Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code ExecutionĬVE-2011-3402, TrueType Font Parsing Vulnerability The differentiator here is that the user would have to "open" the file, rather than just browsing to the page, so some level of social engineering needs to happen here. This a broad classification, since these files could be hosted on a web site and downloaded by an unsuspecting victim. These bulletins detail vulnerabilities that will generally be exploited via a specially crafted file. Of course, "all of them" is the standard answer, but these bulletins contain fixes across Windows, Office, and Internet Explorer, so for the WordPerfect and NCSA Mosaic zealots among you, it's gloating time again. With this many high-urgency bulletins, it's tough to get a handle on which ones to tackle first. This Patch Tuesday, there are 3 new Critical and 10 new Important Bulletins.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |