It’s a relatively small one this time, but critical.
Microsoft addressed 22 security vulnerabilities across four security bulletins in July’s Patch Tuesday update. Three of the patches fix issues in the Windows operating system.
The four bulletins patched issues in all versions of the Windows operating system and in Microsoft Visio 2003 Service Pack 3, Microsoft said in its Patch Tuesday advisory, released July 12. Of the patches, only one has been rated “critical.” The remaining three are rated “important,” according to Microsoft.
“Today’s Patch Tuesday, though light, should not be ignored, as these patches address vulnerabilities that allow attackers to remotely execute arbitrary code on systems and use privilege escalation exploits,” said Dave Marcus, director of security research and communications at McAfee Labs.
Security experts ranked Microsoft bulletin MS11-053, which addressed a critical vulnerability in the Windows Bluetooth stack on Windows Vista and Windows 7, as the highest priority. Attackers could exploit the vulnerability by crafting and sending specially crafted Bluetooth packets to the target system to remotely take control, Microsoft said in its bulletin advisory.
Microsoft Security Bulletin Summary for July 2011
Microsoft fixes 22 security holes
Microsoft issues critical patch for Windows 7, Vista users
Microsoft Releases 4 Updates for Windows and Office
Microsoft warns of critical security hole in Bluetooth stack
Security Experts Warn of Microsoft Bluetooth Vulnerability
Patch Tuesday Fixes Critical Bluetooth Flaw in Windows 7
‘Bluetooth sniper’ Windows vuln fix in light Patch Tuesday
Microsoft Squashes Bluetooth Bug
Microsoft patches ‘sexy’ Bluetooth bug in Vista, Windows 7
Microsoft Fixes 22 Bugs in July Patch Tuesday
Businesses should not ignore critical Microsoft Patch Tuesday update, say experts
Microsoft Patch Tuesday: four security bulletins
Microsoft Patch Tuesday – 12th July 2011
This isn’t the first time you’ve had to update Windows, you know what to do, so get busy.
/until next time, same patch time, same patch channel
Filed under: Blog Entry | Tagged: Address, Addressed, Advisory, All Versions, Allow, Arbitrary, Arbitrary Code, Attackers, Bluetooth Packets, Bluetooth Stack, Bugs, Bulletin, Bulletin Advisory, Code, Communications, Control, Crafting, Critical, Critical Vulnerability, Dave Marcus, Director, Director Of Security Research And Communications, Escalation, Execute, Experts, Exploit, Exploits, Highest Priority, Important, Issues, McAfee, McAfee Labs, Microsoft, Microsoft Patch Tuesday, Microsoft Visio 2003, Microsoft Visio 2003 Service Pack 3, MS11-053, Operating System, Patch, Patch Tuesday, Patch Tuesday Advisory, Patched, Patches, Privilege, Privilege Escalation Exploits, Rated, Released, Remotely, Remotely Execute, Remotely Execute Arbitrary Code, Remotely Take Control, Security, Security Bulletin, Security Experts, Security Research, Security Vulnerabilities, Sending, Service Pack 3, Specially Crafted, Specially Crafted Bluetooth Packets, System, Systems, Target, Target System, Tuesday, Versions, Vulnerabilities, Vulnerability, Windows, Windows 7, Windows Bluetooth Stack, Windows Operating System, Windows Vista | Leave a Comment »