Adobe Reader 9.2 & Acrobat 9.2

Critical vulnerabilities have been identified in Adobe Reader 9.1.3 and Acrobat 9.1.3, Adobe Reader 8.1.6 and Acrobat 8.1.6 for Windows, Macintosh and UNIX, and Adobe Reader 7.1.3 and Acrobat 7.1.3 for Windows and Macintosh. These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system. This update represents the second quarterly security update for Adobe Reader and Acrobat.
Adobe recommends users of Adobe Reader 9.1.3 and Acrobat 9.1.3 and earlier versions update to Adobe Reader 9.2 and Acrobat 9.2. Adobe recommends users of Acrobat 8.1.6 and earlier versions update to Acrobat 8.1.7, and users of Acrobat 7.1.3 and earlier versions update to Acrobat 7.1.4. For Adobe Reader users who cannot update to Adobe Reader 9.2, Adobe has provided the Adobe Reader 8.1.7 and Adobe Reader 7.1.4 updates. Updates apply to all platforms: Windows, Macintosh and UNIX. [1]

It ain’t just Microsoft … while MS issued a deluge of patches today, Adobe pushes just one, but theirs addresses no less than 29!! gaping holes in one single update. As we reported earlier, at least one of these 29 vulnerabilities is already being actively exploited. … [2]

LINKS:
[1] Security Updates Available for Adobe Reader and Acrobat APSB09-15 (2009-Oct-13) [Adobe]
[2] Adobe Reader and Acrobat – Black Tuesday continues (2009-Oct-13) [SANS]

CRP09-058, CRP09-059

Patch Tuesday Wednesday (OCT-2009)

This month we have thirteen (13) new security bulletins, a restart will be required.

This month, we released 13 new bulletins which address 33 vulnerabilities in Windows, Internet Explorer and Microsoft Office. Since we published this information in our advance notification (ANS) last Thursday, we have been asked “is this the most bulletins Microsoft has ever released”? The short answer to that question is yes. However, we have, on several occasions, released between 10 and 12 bulletins so this is business as usual. All of our updates go through extensive quality testing and when they reach the bar for broad distribution, we schedule them for release. [1]

8 x Critical, 5 x Important

Bulletin	KB number	Description	Severity	Impact	Software
MS09-50	975517	Vulnerabilities in SMBv2 Could Allow Remote Code Execution	Remote Code Execution	Critical	Microsoft Windows
MS09-051	975682	Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution	Remote Code Execution	Critical	Microsoft Windows
MS09-052	974112	Vulnerability in Windows Media Player Could Allow Remote Code Execution	Remote Code Execution	Critical	Microsoft Windows
MS09-053	975254	Vulnerabilities in FTP Service for Internet Information Services Could Allow Remote Code Execution	Remote Code Execution	Important	Microsoft Windows
MS09-054	974455	Cumulative Security Update for Internet Explorer	Remote Code Execution	Critical	Microsoft Windows, Internet Explorer
MS09-055	973525	Cumulative Security Update of ActiveX Kill Bits	Remote Code Execution	Critical	Microsoft Windows
MS09-056	974571	Vulnerabilities in Windows CryptoAPI Could Allow Spoofing	Spoofing	Important	Microsoft Windows
MS09-057	969059	Vulnerability in Indexing Service Could Allow Remote Code Execution	Remote Code Execution	Important	Microsoft Windows
MS09-058	971486	Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege	Elevation of Privilege	Important	Microsoft Windows
MS09-059	975467	Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service	Denial of Service	Important	Microsoft Windows
MS09-060	973965	Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution	Remote Code Execution	Critical	Microsoft Office
MS09-061	974378	Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution	Remote Code Execution	Critical	Microsoft Windows, Microsoft .NET Framework, Microsoft Silverlight
MS09-062	957488	Vulnerabilities in GDI+ Could Allow Remote Code Execution	Remote Code Execution	Critical	Microsoft Windows, Internet Explorer, Microsoft .NET Framework, Microsoft Office, Microsoft SQL Server, Microsoft Developer Tools, Microsoft Forefront

For this month:
A large number of Remote Code Execution vulnerabilities for this month.

PATCH NOW:
NOW: MS09-050, MS09-051, MS09-052, MS09-054, MS09-055, MS09-056, MS09-057, MS09-060, MS09-061, MS09-062

LINKS:
[1.] October 2009 Security Bulletin Release (2009-Oct-13) [MS: MSRC]
[2.] Microsoft October 2009 Black Tuesday Overview (2009-Oct-13) [SANS]
[3.] Microsoft Security Bulletin Summary for October 2009 (2009-Oct-13) [MS]
[4.] Microsoft security updates for October 2009 (2009-Oct-13) [MS]
[5.] Assessing the risk of the October security bulletins (2009-Oct-12) [MS: SR&D]
[6.] MS09-056: Addressing the X.509 CryptoAPI ASN.1 security vulnerabilities (2009-Oct-12) [MS: SR&D]
[7.] MS09-051: A note on the affected platforms (2009-Oct-12) [MS: SR&D]
[8.] MS09-050: Exploit timeline for the SMB2 RCE vulnerability (2009-Oct-12) [MS: SR&D]
[9.] MS09-054: Extra info on the attack surface for the IE security bulletin (2009-Oct-12) [MS: SR&D]
[10.] MS09-061: More information about the .NET security bulletin (2009-Oct-12) [MS: SR&D]
[11.] New attack surface reduction feature in GDI+ (2009-Oct-12) [MS: SR&D]

CRP09-057