Today is Microsoft last Update for 2010 and it’s a large update. The 17 security bulletins will address 40 vulnerabilities that will impact Internet Explorer and MS Windows.
All versions of MS OS will receive updates: Win XP, Server 2003 & 2008, Vista and Win 7. MS Office products that will be updated are: MS XP, Office 2003, 2007, 2011 and MS Office SharePoint Server 2007.
MS released more bulletin in 2010 than in previous years; the total bulletins released this year is 106. Mike Reavey director of Microsoft Security Response Center said that the increase number is “partly due to vulnerability reports in Microsoft product increasing slightly, as indicated by our latest Security Intelligence Report.”
MS released 49 fixes for Patch Tuesday; the following are affected Windows, IE (Internet Explorer) and .NET.
The Bulletins included in this update are:
- MS10-071 – Security Update for IE 6, 7 and 8
- MS10-073 – Vulnerability in Windows Kernel
- MS10-075 – Critical Vulnerability in Media Player
- MS10-076 – Critical Vulnerability in Open Type Font Engine that could allow Remote Open Execution
- MS10-077 – Could affect OS Win XP, Vista, Win 7, Win Ser 2003 and 2008
Microsoft Windows Live Essentials 2011 is available for Download. The download is available for Windows 7 and Vista users only.
Windows Live suite includes: Messenger Update, Photo Gallery, Movie Maker, Multiple E-Mail Accounts and more. Click Here to Download.
MS released 4 updates today, 1 of the updates was the last XP Service Pack 2 update. MS will not release anymore Win XP2 and Win 2000 security updates after today.
There are a total of 5 vulnerabilities that are critical depending on what platform you are using. Vista and Office 2010 do not have any vulnerabilities. The vulnerabilities are as follows:
- MS10-042 – Help and Support Center will not allow remote code executions – Win XP and Win Server 2003.
- MS10-043 – Canonical Display Driver could allow remote code execution – Win 7 64bit and Win Server 2003 R2
- MS10-044 – MS Office Access ActiveX Controls could allow remote code execution – Access 2003 and 2007
- MS10-045 – MS Office Outlook coud not allow remote code executions – Outlook XP (2002), 2003, and 2007. Outlook 2010 is not affected. – MS rates this update as “important’ not critical.
Microsoft will release more than 10 bulletins today. Two of the 3 critical vulnerabilities target Windows and the 3rd vulnerablity address IE 6, 7, 8. The other 7 bulletins address 4 Windows and 3 Office flaws.
There will also be an update for the Windows Malicious Removal tool.
Microsoft Windows 7 sales are much better than Vista’s. Retail sales are showing Win 7 up 234% over Vista in the same time period.
Since its launch, Windows 7 has grown 84% in marketshare. It took Vista six months to claim 4% of the OS market when it launched.