Posted By Netgear Threat Lab at 12:40 AM, December 25, 2011
Microsoft has just released this year's last monthly security update which includes 13 patches for Windows, Office, IE, Windows Media Player and Publisher that resolves 19 security vulnerabilities found in these products.
One patch of particular concern is MS11-087. The patch fixes the Windows kernel vulnerability that the DUQU virus had been taking advantage of.
(Attackers embedding specially crafted TrueType fonts in documents can exploit this vulnerability in the Windows kernel.)
MS-11-092 is another important patch. It is for a high-risk level security hole for the windows media player remote code execution vulnerability - when a vulnerable user opens Windows Media Player, the attacker can use a carefully constructed digital video recording file (.Dvr-ms) to exploit the hole and use it to install malicious programs or steal users' privacy.
We remind users not to open suspicious files and promptly install security patches.
Posted by: Netgear Threat Lab at 12:40 AM
Categories: Netgear Threat Lab
TrackBack URL: http://prosecure.netgear.com/cgi-bin/mt/mt-tb.cgi/142