Microsoft wheeled out another batch of  security patches today to fix multiple dangerous security flaws that expose billions of Windows users to remote code execution attacks.

The Patch Tuesday batch for May 2012 covers at least 23 documented vulnerabilities in Microsoft Office, Microsoft Windows, the Microsoft .NET Framework and Microsoft Silverlight.

The company is urging Windows users to pay special attention toMS12-034, a “critical” bulletin that patches 10 distinct security holes.  Three of these vulnerabilities have already been publicly disclosed and Microsoft expects to see working exploit code released within 30 days.

The vulnerable code in the MS12-034 bulletin is linked to the Duqu malware that was used to spy on high-profile targets in Iran.

Some details:follow Ryan Naraine on twitter

  • MS12-034 (Microsoft Office, Windows, .NET Framework, and Silverlight): This security update resolves three publicly disclosed vulnerabilities and seven privately reported vulnerabilities in Microsoft Office, Microsoft Windows, the Microsoft .NET Framework, and Microsoft Silverlight. The most severe of these vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits a malicious webpage that embeds TrueType font files. An attacker would have no way to force users to visit a malicious website. Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes them to the attacker’s website.

Microsoft is also highlighting MS12-029 as another high-priority update that should be deployed immediately.   This bulletin, also rated critical, addresses a security flaw in Microsoft Word that could be exploited by hackers to take complete control of a vulnerable machine. Attack vectors for this issue include maliciously crafted websites and email, the company said.

Here’s a glimpse at the rest of this month’s updates:

  • MS12-035: This security update resolves two privately reported vulnerabilities in the .NET Framework. The vulnerabilities could allow remote code execution on a client system if a user views a specially crafted webpage using a web browser that can run XAML Browser Applications (XBAPs). Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
  • MS12-030: This security update resolves one publicly disclosed and five privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Office file. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
  • MS12-031: This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted Visio file. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
  • MS12-032: This security update resolves one privately reported and one publicly disclosed vulnerability in Microsoft Windows. The more severe of these vulnerabilities could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application.
  • MS12-033: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability.

20 Comments

LIFESTYLE NEWS · April 19, 2019 at 3:32 pm

After looking at a handful of the blog articles onn your
site, I honestly like your technique of blogging.
I book-marked it to my bookmark website list and will be checking back in the near future.
Please visit my webb site as well and tell me what yoou think.

How To Take Constructive Criticism And Use It As Motivation · May 13, 2019 at 10:44 pm

I relish, cause I found just what I used to be lookiing for.

You’ve ended myy 4 day long hunt! God Bless you man. Have a nice day.

Bye

anadolu yakasi escort · June 21, 2019 at 3:49 am

Hi there, every time i used to check blog posts here in the early hours
in the morning, as i like tto learn more and more.

kartal escort · June 21, 2019 at 3:57 am

Keep on writing, great job!

anadolu yakasi escort · June 21, 2019 at 4:03 am

I do not evesn understand how I ended up here, but I assumed
this put up was once good. I do not know who youu are but certainly you’re going to a
famous bloggeer in case you are not already. Cheers!

atasehir escort · June 21, 2019 at 8:24 am

Hi there, I want to subscribe for this website to take ost up-to-date updates, thus
where can i do it please help.

bostanci escort · June 21, 2019 at 8:32 am

Hey! This is kind of off topic but I need some guidance from an established blog.
Is it hzrd to set uup your own blog? I’m not very techincal but I can figure things ouut prdtty fast.
I’m thinking about setting up my own but I’m not sure where to start.
Do you have any points or suggestions? Thank you

umraniye escort · June 21, 2019 at 8:35 am

I am nnot sure where you’re getting your information, but good topic.

I needs tto spend some time learning more or understanding more.
Thanks for wonderful inforemation I was looking forr this information for my mission.

the best cbd oil to buy · June 22, 2019 at 2:50 am

Hello, i think that i saw you visited my weblog so i got here to return the choose?.I’m trying to in finding things to enhance my site!I guess
its good enough to make use of a few oof your concepts!!

cbd oil for chronic pain · June 22, 2019 at 3:21 am

Hello juyst wanted too give you a brief heads upp and let you know
a few of thee pictures aren’t loading correctly.
I’m nnot sure why but I think its a linking issue. I’ve tried
it in two different browwsers and both show the same outcome.

buy cannabis oil online · June 22, 2019 at 7:45 am

Informative article, ust what I was looking for.

where can i buy cbd oil · June 22, 2019 at 8:14 am

Very energetic post, I enjoyed tuat bit. Will there be
a part 2?

fernando martinez gomez tejedor · June 28, 2019 at 4:14 am

Hey there! This is kind of off topic bbut I need some guidance from an established blog.
Is it tough to set uup yiur own blog? I’m not very techincal
but I can figure things outt pretty quick. I’m thinking about setting up my own but
I’m not sure where to start. Do you have any tips or suggestions?
Cheers

similar web page · August 1, 2019 at 5:14 pm

Excellent post! We are linking to this great content on our website. Keep up the good writing.

he said · August 9, 2019 at 10:29 am

Excellent post. I definitely appreciate this website. Continue the good work!

Get Source · August 10, 2019 at 6:51 am

I believe that is among the such a lot vital info for me. And i’m glad reading your article. However wanna remark on some common issues, The website style is perfect, the articles is really great : D. Just right process, cheers

Going In this article · August 10, 2019 at 7:18 am

I’m amazed, I must say. Rarely do I encounter a blog that’s equally educative and engaging, and without a doubt, you’ve hit the nail on the head. The issue is something that too few men and women are speaking intelligently about. I am very happy I found this during my search for something relating to this.

enquiry · August 10, 2019 at 1:23 pm

These are genuinely enormous ideas in on the topic of blogging. You have touched some nice things here. Any way keep up wrinting.

go now · August 10, 2019 at 1:43 pm

I have read so many articles or reviews regarding the blogger lovers but this paragraph is actually a fastidious article, keep it up.

helpful resources · August 10, 2019 at 6:45 pm

I was suggested this blog by means of my cousin. I’m no longer certain whether or not this submit is written by means of him as no one else recognise such designated about my problem. You’re wonderful! Thanks!

Leave a Reply

Your email address will not be published.

error: Content is protected !!