On TV.com: 2009's Most PIRATED TV Show
BNET Business Network:
BNET
TechRepublic
ZDNet

August 11th, 2009

Microsoft: Exploits likely for 'critical' Windows vulnerabilities

Posted by Ryan Naraine @ 1:01 pm

Categories: Arbitrary Code Execution, Botnets, Browsers, Complex Attacks, Data theft, Exploit code, Locally Running Web Servers, Microsoft, Passwords, Patch Watch, Research, Responsible disclosure, Spyware and Adware, Vulnerability research, Web 2.0, Web Applications, Windows Vista

Tags: Windows Vulnerability, Vulnerability, Exploit Code, Microsoft Corp., Microsoft Windows, Security, Operating Systems, Software, Ryan Naraine

Microsoft today dropped a mega patch bundle with fixes for several “critical” vulnerabilities affecting the Windows platform and warned that “consistent, reliable exploit code” was likely to be released within 30 days.

The Redmond, Wash. software maker released nine bulletins — five rated critical — to provide cover for a total of 19 documented security vulnerabilities.   Of the nine updates, eight affect Windows and one affects Office Web Components (OWC).

The raw data:

  • MS09-036 (Important): This update addresses one documented vulnerability in the Microsoft .NET Framework component of Microsoft Windows.  This could allow denial-of-service attacks.
  • MS09-037 (Critical): Five privately reported vulnerabilities in Microsoft Active Template Library (ATL).   Hackers could exploit these flaws to launch remote code execution.  Consistent, reliable exploit code likely within the month.
  • MS09-038 (Critical): Covers two privately reported vulnerabilities in Windows Media file processing, which could allow remote code execution.
  • MS09-039 (Critical):  This bulletin addresses two privately reported vulnerabilities in the Windows Internet Name Service (WINS).  These issues could lead toremote code execution attacks and exploit code is likely to be released soon.
  • MS09-040 (Important): This patches a privately reported vulnerability in the Windows Message Queuing Service (MSMQ), which could allow elevation of privilege. Reliable Exploit code likely.
  • MS09-041 (Important): Covers a privately reported vulnerability in the Windows Workstation Service, which could allow elevation of privilege.  Reliable exploit code likely for this flaw.
  • MS09-042 (Important): This update resolves a publicly disclosed vulnerability in the Microsoft Telnet service, which could allow an attacker to obtain credentials.
  • MS09-043 (Critical): This covers four privately reported vulnerabilities in Microsoft Office Web Components, which could allow remote code execution.
  • MS09-044 (Critical): This update resolves two privately reported vulnerabilities in Microsoft Remote Desktop Connection, which could allow remote code execution.

This chart from Microsoft (click image for full size) shows where consistent, reliable exploit code is likely:

For more information, see this entry on the MSRC blog.  Over on Theatpost, Shavlik’s Eric Schultz digs deeper into the vulnerabilities and patches.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?

  • Talkback
  • Most Recent of 51 Talkback(s)
BTW
I'm retired now. I don't know why I still come here, but it's cute to watch the "true believers" of an OS point the stink finger at others.
I started building, selling, and servicing computers in w... (Read the rest)
Posted by: Otis Driftwood Posted on: 08/16/09 You are currently: a Guest | | Terms of Use
Who cares if exploit code will be released in the future  NonZealot | 08/11/09
@NonZealot  eqpc | 08/11/09
If Conficker has tought us anything...  Qbt | 08/11/09
The enterprise has to turn off automatic updates...  jasonp@... | 08/12/09
As has been proven time and again the risk of not patching...  ye | 08/12/09
References Please  MichP | 08/12/09
Companies have a good idea if a particular program is...  ye | 08/12/09
@ye, I'm glad you not in our shop...  sykandtyed | 08/12/09
Not really correct there  mechBgon | 08/12/09
You mean something like this?  frgough | 08/11/09
Image Tricks.  Otis Driftwood | 08/16/09
BTW  Otis Driftwood | 08/16/09
Another yawner day for security patching if you're running unprivileged.  ye | 08/11/09
Might as well patch, no reboot needed on Win7  NonZealot | 08/11/09
I've always advocated patching.  ye | 08/11/09
Patching Important  eiverson@... | 08/11/09
It appears that you're right, BUT...  honeymonster | 08/11/09
LUA and Drive-by Attacks  eiverson@... | 08/11/09
I agree. Which is why I never bought the...  ye | 08/11/09
Not too bad  frgough | 08/11/09
Was this intended to be an example of how to do it?  ye | 08/11/09
Adticle conveniently omits a crucial fact  honeymonster | 08/11/09
Now try a Software Restriction Policy.  mechBgon | 08/11/09
And yet  frgough | 08/11/09
Just applying your rules. (nt)  ye | 08/11/09
I don't know about that  Michael Kelly | 08/12/09
Can you expand upon this?  ye | 08/12/09
Again, maybe I am reading into it incorrectly  Michael Kelly | 08/12/09
You're reading it correctly.  ye | 08/12/09
Don't really care what the Mac folk think  Michael Kelly | 08/12/09
These are not out of cycle.  ye | 08/12/09
Oops...  Michael Kelly | 08/12/09
This has become hilarious...  storm14k | 08/12/09
How did you reach that spin?  ye | 08/12/09
Nothing for the smart people to defend...  storm14k | 08/12/09
Where did I see what? (nt)  ye | 08/12/09
A casual look indicates that...  zkiwi | 08/12/09
RE: Microsoft: Exploits likely for 'critical' Windows vulnerabilities  Loverock Davidson | 08/11/09
9 patches, but 19 vulnerabilities are patched  honeymonster | 08/11/09
I pass on Loverocks apology  Viva la crank dodo | 08/12/09
Don't you know about Windows Genuine Advantage?  Trolleur | 08/12/09
That is BS (Bad Statement)  Erroneous | 08/12/09
critical patches are available for "pirate" machines as well (nt)  rtk | 08/12/09
So predictable  frgough | 08/11/09
nt  frgough | 08/11/09
Telnet isn't installed by default, and it's not like Telnet is secure  georgeou | 08/11/09
Microsoft should be more like Apple  Trolleur | 08/12/09
Of course exploits likely when zdnet provides hacker roadmap.  photomstr@... | 08/13/09
Can't wait to start applying Windows 7 patches  stenman@... | 08/13/09
Why I Hate Microsoft...  bbneo | 08/13/09
wow, it's like ya jumped in a time machine  rtk | 08/13/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here