1 / 21

Information About Microsoft June 2012 Security Bulletins

Information About Microsoft June 2012 Security Bulletins. Jonathan Ness Security Development Manager Microsoft Corporation Dustin Childs Group Manager, Response Communications Microsoft Corporation. Live Video Stream. To receive our video stream in LiveMeeting: Click on Voice & Video

kolton
Download Presentation

Information About Microsoft June 2012 Security Bulletins

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Information About Microsoft June 2012 Security Bulletins Jonathan Ness Security Development ManagerMicrosoft Corporation Dustin Childs Group Manager, Response CommunicationsMicrosoft Corporation

  2. Live Video Stream • To receive our video stream in LiveMeeting: • Click on Voice & Video • Click the drop down next to the camera icon • Select Show Main Video

  3. What We Will Cover • Review of June 2012 Bulletin Release Information • New Security Bulletins • Security Advisory 2719615 • KB 2677070 - Automatic Updater of Revoked Certificates • Microsoft® Windows®Malicious Software Removal Tool • Resources • Questions and Answers: Please Submit Now • Submit Questions via Twitter #MSFTSecWebcast

  4. Severity and Exploitability Index Internet Explorer Dynamics AX Windows Windows Windows .NET Lync

  5. Bulletin Deployment Priority

  6. MS12-036: Vulnerability in Remote Desktop Could Allow Remote Code Execution (2685939)

  7. MS12-037: Cumulative Security Update for Internet Explorer (2699988) – slide 1 of 2

  8. MS12-037: Cumulative Security Update for Internet Explorer (2699988) – slide 2 of 2

  9. MS12-038: Vulnerability in .NET Framework Could Allow Remote Code Execution (2706726)

  10. MS12-039: Vulnerabilities in Lync Could Allow Remote Code Execution (2707956)

  11. MS12-040: Vulnerability in Microsoft Dynamics AX Enterprise Portal Could Allow Elevation of Privilege (2709100)

  12. MS12-041: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2709162)

  13. MS12-042: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2711167)

  14. Security Advisory 2719615:Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution • We are releasing a Security Advisory to address a vulnerability in Microsoft XML Core Services. • The issue, if exploited, would permit remote code execution. • The Security Advisory describes the issue in greater detail and provides a no-reboot Fix it that blocks the vector in Internet Explorer. • We recommend that customers deploy EMET (the Enhanced Mitigation Experience Toolkit) for additional protection. • This advisory affects all supported versions of Windows as well as Office 2003 and 2007 and Microsoft SQL. • Please see Security Advisory 2719615 for more information.

  15. KB 2677070: Automatic Updater of Revoked Certificates • Microsoft is improving the process by which customers interact with untrusted or compromised certificates and keys. • In the past, we issued CRLs – Certificate Revocation Lists – and customers would update their systems manually. • We are rolling out an automated process that will update Windows clients with no manual interaction on the part of customers. See KB 2677070 for more information • KB 2677070 makes this feature available to customers using Windows Vista SP2, Windows Server 2008 SP2, Windows 7, or Windows Server 2008 R2 SP1, and is included in Windows 8 Release Preview and the Windows Server 2012 Release Candidate. • In August, we will release a change to how Windows manages certificates that have RSA keys of less than 1024 bits in length. We will treat all of these certificates as invalid, even if they are currently valid and signed by a trusted certificate authority.

  16. Detection & Deployment **Available via the Download Center and the Microsoft Dynamics Customer Source and Microsoft Dynamics Partner Source *** Except for Microsoft Lync 2010 Attendee (user-level install), which is available only via the Download Center.

  17. Other Update Information

  18. Windows Malicious Software Removal Tool (MSRT) • During this release Microsoft will increase detection capability for the following families in the MSRT: • Win32/Cleaman:A malicious program lacking the ability to propagate on its own, Cleaman can perform a variety of actions on an infected machine as directed by a remote attacker. • Win32/Kuluoz:This trojan takes instruction from remote servers and is known in particular to download variants of Trojan:Win32/FakeSysdef, a fake security scanner. • Available as a priority update through Windows Update or Microsoft Update. • Offered through WSUS 3.0 or as a download at: www.microsoft.com/malwareremove.

  19. Resources Blogs • Microsoft Security Response Center (MSRC) blog:www.blogs.technet.com/msrc • Security Research & Defense blog:http://blogs.technet.com/srd • Microsoft Malware Protection Center Blog: http://blogs.technet.com/mmpc/ Twitter • @MSFTSecResponse Security Centers • Microsoft Security Home Page: www.microsoft.com/security • TechNet Security Center:www.microsoft.com/technet/security • MSDN Security Developer Center:http://msdn.microsoft.com/en-us/security/default.aspx Bulletins, Advisories, Notifications & Newsletters • Security Bulletins Summary:www.microsoft.com/technet/security/bulletin/summary.mspx • Security Bulletins Search:www.microsoft.com/technet/security/current.aspx • Security Advisories:www.microsoft.com/technet/security/advisory/ • Microsoft Technical Security Notifications:www.microsoft.com/technet/security/bulletin/notify.mspx • Microsoft Security Newsletter:www.microsoft.com/technet/security/secnews Other Resources • Update Management Processhttp://www.microsoft.com/technet/security/guidance/patchmanagement/secmod193.mspx • Microsoft Active Protection Program Partners: http://www.microsoft.com/security/msrc/mapp/partners.mspx

  20. Questions and Answers Submit text questions using the “Ask” button. Don’t forget to fill out the survey. A recording of this webcast will be available within 48 hours on the MSRC Blog:http://blogs.technet.com/msrc Register for next month’s webcast at:http://microsoft.com/technet/security/current.aspx

  21. © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

More Related