This month we have 1xCritical bulletin which is detected via Microsoft Baseline Security Analyzer. A restart will be required.
| Bulletin | KB number | Description | Severity | Impact | Software |
|---|---|---|---|---|---|
| MS09-017 | 967340 | Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution | Remote Code Execution | Critical | Microsoft Office |
For this month:
A multitude of vulnerabilities allow random code execution.
While Office for Mac versions and Works are affected by some of the vulnerabilities disclosed in the advisory, there are NO patches available from Microsoft at this time for these products.
Replaces MS08-051. [2]
CVE-2009-0556 is actively exploited with exploit code publicly known since April 2nd 2009, see also SA969136 … [2]
This month Microsoft released one bulletin which repairs a total of 14 vulnerabilities. 1 of these vulnerabilities has been publicly described in some form and in-the-wild exploitation has been witnessed. … — eEye [5]
PATCH NOW:
NOW: MS09-017
LINKS:
[1.] May 2009 Bulletin Release (2009-May-12) [MS: MSRC]
[2.] May Black Tuesday Overview (2009-May-12) [SANS]
[3.] Microsoft Security Bulletin Summary for May 2009 (2009-May-12) [MS]
[4.] Microsoft security updates for May 2009 (2009-May-12) [MS]
[5.] Microsoft Patch Disclosure – May 2009 (2009-May-12) [eEye]
[6.] MS09-017: An out-of-the-ordinary PowerPoint security update (2009-May-12) [MS: SR&D]
0 Responses to “Patch <strike>Tuesday</strike> Wednesday (MAY-2009)”