• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

Microsoft Black Tuesday: 16 Bulletins, 34 Vulnerabilities, Lots of Patching

June 14, 2011 By Corey Nachreiner

If you plan on enjoying a Father’s Day of BBQ and relaxation, you better start patching your Microsoft networks now. Otherwise, you may not have time to install 16 bulletins worth of patches by this weekend.

Microsoft has posted their June Patch Day summary, which contains 16 security bulletins, nine of which they rate as Critical. The bulletins fix around 34 vulnerabilities in many Microsoft products, including:

  • Internet Explorer (IE)
  • Windows (and components that ship with it)
  • Office
  • SQL Server
  • .NET Framework
  • Silverlight
  • Visual Studio
  • Forefront Threat Management Gateway

With so many Critical updates, it’s hard to say which to install first. In general, I recommend you follow the priority recommended in Microsoft’s summary bulletin. That said, lately attackers have  focused on leveraging web and browser-based vulnerabilities to install malware via “Drive-by Downloads.” So you may want to install the Critical IE updates before the others.

We’ll post more detailed alerts about these flaws, and how to fix them, shortly.  — Corey Nachreiner, CISSP

Share This:

Related

Filed Under: Uncategorized Tagged With: Internet Explorer, Microsoft, smb, SQL Server, Updates and patches, VML

Comments

  1. Brian Risley says

    June 14, 2011 at 1:09 pm

    Link is for April patch day, needs to be June. Change apr in link to jun.

    Reply
    • Corey Nachreiner says

      June 14, 2011 at 1:11 pm

      Thanks. I got the first link right, but the second was still April, as you mentioned… fixed now.

      Cheers!

      Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • US National Cybersecurity Strategy
  • Cybersecurity’s Toll on Mental Health
  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • Here Come The Regulations

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • Here Come The Regulations
  • US National Cybersecurity Strategy
  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • Cybersecurity’s Toll on Mental Health
  • Successfully Prosecuting a Russian Hacker
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use