Microsoft Patch Tuesday Update - 9th February 2011
With this Microsoft Patch Tuesday update, we see a large set of updates in comparison to the recent small list of updates release by Microsoft for the month of January. In total there are 12 Microsoft Security Updates with the following rating; 3 Critical and 9 as rated Important. Though this is a large update from Microsoft, the impact for the updates is relatively small and only affecting a small number of packages across the AOK sample application portfolio.
Given the nature of the changes and updates included in each of these patches, most systems will require a reboot to successfully implement any and all of the patches and updates released in this February Patch Tuesday release cycle.
Here is a sample of the results for one application and a summary of the Patch Tuesday results for one of our AOK Sample databases.
MS11-009: Vulnerabilities in Jscript and VBScript Scripting Engine could allow information disclosure.
And here is a sample screen shot of the AOK Summary Information HTML report from a small sample database.
Testing Summary
| MS11-003 |
Cumulative Security Update for Internet Explorer (2482017) |
| MS11-004 |
Vulnerability in Internet Information Services (IIS) FTP Service Could Allow Remote Code Execution (2489256) |
| MS11-005 |
Vulnerability in Active Directory Could Allow Denial of Service (2478953) |
| MS11-006 |
Vulnerability in Windows Shell Graphics Processing Could Allow Remote Code Execution (2483185) |
| MS11-007 |
Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution (2485376) |
| MS11-008 |
Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (2451879) |
| MS11-009 |
Vulnerability in JScript and VBScript Scripting Engines Could Allow Information Disclosure (2475792) |
| MS11-010 |
Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2476687) |
| MS11-011 |
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2393802) |
| MS11-012 |
Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2479628) |
| MS11-013 |
Vulnerabilities in Kerberos Could Allow Elevation of Privilege (2496930) |
| MS11-014 |
Vulnerability in Local Security Authority Subsystem Service Could Allow Local Elevation of Privilege (2478960) |
Security Update Detailed Summary
*All results are based on an AOK Application Compatibility Lab’s test portfolio of over 1,000 applications.