June 2011 Security Bulletin Release Advance Notification
by Micro-ClouseauThis ‘Patch Tuesday’ for June 2011, sees the release of 16 bulletins addressing 34 vulnerabilities:
Bulletin Breakdown:
- 9 bulletins are rated Critical
- 7 bulletins are rated Important
- 10 vulnerabilities can lead to Remote Code Execution
- 2 vulnerabilities can lead to Information Disclosure
- 2 vulnerabilities can lead to Denial of Service
- 2 vulnerabilities can lead to Elevation of Privilege
The following table summarizes the security bulletins for this month in order of severity.
| Bulletin ID | Maximum Severity Rating and Vulnerability Impact | Restart Requirement | Affected Software |
| Bulletin 1 | Critical | Requires Restart | Microsoft Windows |
| Remote Code Execution | |||
| Bulletin 2 | Critical | May require restart | Microsoft Windows |
| Remote Code Execution | Microsoft .NET Framework, | ||
| Microsoft Silverlight | |||
| Bulletin 3 | Critical | Requires restart | Microsoft Forefront Threat |
| Remote Code Execution | Management Gateway | ||
| Bulletin 4 | Critical | Requires restart | Microsoft Windows |
| Remote Code Execution | |||
| Bulletin 5 | Critical | Requires restart | Microsoft Windows |
| Remote Code Execution | |||
| Bulletin 6 | Critical | Requires restart | Microsoft Windows |
| Remote Code Execution | |||
| Bulletin 7 | Critical | May require restart | Microsoft Windows |
| Remote Code Execution | Microsoft .NET Framework | ||
| Bulletin 8 | Critical | Requires restart | Microsoft Windows |
| Remote Code Execution | Internet Explorer | ||
| Bulletin 9 | Critical | May require restart | Microsoft Windows |
| Remote Code Execution | Internet Explorer | ||
| Bulletin 10 | Important | May require restart | Microsoft Windows |
| Information Disclosure | |||
| Bulletin 11 | Important | May require restart | Microsoft Office |
| Remote Code Execution | |||
| Bulletin 12 | Important | Requires restart | Microsoft Windows |
| Elevation of Privilege | |||
| Bulletin 13 | Important | Requires restart | Microsoft Windows |
| Denial of Service | |||
| Bulletin 14 | Important | Requires restart | Microsoft Windows |
| Denial of Service | |||
| Bulletin 15 | Important | May require restart | Microsoft Office |
| Information Disclosure | Microsoft SQL Server, | ||
| Microsoft Visual Studio | |||
| Bulletin 16 | Important | May require restart | Microsoft Windows |
| Elevation of Privilege |
This is another heavy security patch Tuesday from Microsoft. With vulnerability patches being applied across a large range of Microsoft products including, noticeably Server 2003, 2008 R2 and Sql 2005, 2008, 2008 R2.
The full list of software affected by these updates is:
- All supported Microsoft Operating systems (XP, 2003, Vista, 2008, 7, 2008 R2)
- All supported versions of Internet Explorer (7, 8, 9)
- All supported versions of Microsoft Office Excel (XP, 2003, 2007, 2010)
- Microsoft InfoPath 2007, 2010
- Microsoft Excel Viewer
- Microsoft Office Compatibility Pack 2007
- SQL Server 2005, 2008, 2008 R2
- Microsoft Silverlight
- Microsoft Visual Studio 2005, 2008, 2010
- Microsoft Forefront Threat Management Gateway 2010 Client
We will issue further information on the impact of this month’s updates once they have been released for testing in the next couple of days.
The ‘Microsoft Security Bulletin Advance Notification for June 2011‘ page should be referenced for detailed information on how these updates are to affect your servers or solutions when released on 15th June (as usual, as a UKFast customer, you benefit from these updates being applied automatically unless you have opted out of this service.)
MC.
