Cliff Saran's Enterprise blog

Microsoft Patch Tuesday Update - 9th February 2011

Managing Editor

With this Microsoft Patch Tuesday update, we see a large set of updates in comparison to the recent small list of updates release by Microsoft for the month of January. In total there are 12 Microsoft Security Updates with the following rating; 3 Critical and 9 as rated Important. Though this is a large update from Microsoft, the impact for the updates is relatively small and only affecting a small number of packages across the AOK sample application portfolio.

Given the nature of the changes and updates included in each of these patches, most systems will require a reboot to successfully implement any and all of the patches and updates released in this February Patch Tuesday release cycle.

Here is a sample of the results for one application and a summary of the Patch Tuesday results for one of our AOK Sample databases.

MS11-009: Vulnerabilities in Jscript and VBScript Scripting Engine could allow information disclosure.

FEB 11 _ im 1.jpg

And here is a sample screen shot of the AOK Summary Information HTML report from a small sample database.

FEB 11 _ im 2.jpg

Testing Summary

MS11-003	Cumulative Security Update for Internet Explorer (2482017)
MS11-004	Vulnerability in Internet Information Services (IIS) FTP Service Could Allow Remote Code Execution (2489256)
MS11-005	Vulnerability in Active Directory Could Allow Denial of Service (2478953)
MS11-006	Vulnerability in Windows Shell Graphics Processing Could Allow Remote Code Execution (2483185)
MS11-007	Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution (2485376)
MS11-008	Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (2451879)
MS11-009	Vulnerability in JScript and VBScript Scripting Engines Could Allow Information Disclosure (2475792)
MS11-010	Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2476687)
MS11-011	Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2393802)
MS11-012	Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2479628)
MS11-013	Vulnerabilities in Kerberos Could Allow Elevation of Privilege (2496930)
MS11-014	Vulnerability in Local Security Authority Subsystem Service Could Allow Local Elevation of Privilege (2478960)

FEB 11 _ im 3.jpg

Security Update Detailed Summary

FEB 11 _ im 4.jpg

FEB 11 _ im 5.jpg

FEB 11 _ im 6.jpg

FEB 11 _ im 7.jpg

*All results are based on an AOK Application Compatibility Lab’s test portfolio of over 1,000 applications.

SearchCIO

Cliff Saran's Enterprise blog

Microsoft Patch Tuesday Update - 9th February 2011

SearchCIO

3 steps to recalibrate a strategic IT roadmap

Experts predict hot enterprise architecture trends for 2021

Cloud, security top list of IT spending priorities

SearchSecurity

Standardize cybersecurity terms to get everyone correct service

SolarWinds breach news center

Adopting threat hunting techniques, tactics and strategy

SearchNetworking

SolarWinds: Lessons learned for network management, monitoring

7 key SD-WAN trends to evaluate in 2021

10 network security tips in response to the SolarWinds hack

SearchDataCenter

IBM revenues head south again as hardware, services sales dip

Get a template to estimate server power consumption per rack

When the chips are down, Intel turns to VMware's Pat Gelsinger

SearchDataManagement

Enterprise data lakes hold the key to actionable insights

Data fabrics help data lakes seek the truth

Kyligence builds out data cloud for OLAP and big data