Recently, news broke that the private information of a few unlucky celebrities and politicians was leaked online. The data, which includes everything from bank statements to mortgage terms and car loans, was made available on a Russian website. It’s unfortunate that well-known performers like Jay-Z, Beyonce, Britney Spears, and Kim Kardashian have had their information Read more…
The same advice parents might deliver to young drivers on their first solo journey applies to everyone who wants to navigate safely online. A special agent in our Cyber Division offered the following: – “Don’t drive in bad neighborhoods.” – “If you don’t lock your car, it’s vulnerable; if you… Read more »
(BPT) – When you’re job-hunting you go to great lengths to stand out among the hundreds – even thousands – of applicants for a single open position. But while you’re working to catch an employer’s eye, have you considered the importance of protecting your information from unwanted attention? Or the… Read more »
As we all migrate towards using smartphones and tablets, we need to be aware of the risks associated with them. Most of us know that we need to protect our computers with security software, but we don’t always take that precaution with our mobile devices. In fact nearly 75% of Americans do not use mobile Read more…
Hello, welcome to this month’s blog on the Microsoft patch release. This month the vendor is releasing seven bulletins covering a total of 20 vulnerabilities. Twelve of this month’s issues are rated ’Critical’.
As always, customers are advised to follow these security best practices:
Microsoft’s summary of the March releases can be found here:
http://technet.microsoft.com/en-us/security/bulletin/ms13-Mar
The following is a breakdown of the issues being addressed this month:
MS13-021 Cumulative Security Update for Internet Explorer
Internet Explorer OnResize Use After Free Vulnerability (CVE-2013-0087) MS Rating: Critical
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer saveHistory Use After Free Vulnerability (CVE-2013-0088) MS Rating: Critical
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer CMarkupBehaviorContext Use After Free Vulnerability (CVE-2013-0089) MS Rating: Critical
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer CCaret Use After Free Vulnerability (CVE-2013-0090) MS Rating: Critical
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer CElement Use After Free Vulnerability (CVE-2013-0091) MS Rating: Critical
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer GetMarkupPtr Use After Free Vulnerability (CVE-2013-0092) MS Rating: Critical
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer onBeforeCopy Use After Free Vulnerability (CVE-2013-0093) MS Rating: Critical
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer removeChild Use After Free Vulnerability (CVE-2013-0094) MS Rating: Critical
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer CTreeNode Use After Free Vulnerability (CVE-2013-1288) MS Rating: Critical
A remote code execution vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
MS13-022 Critical Vulnerability in Silverlight Could Allow Remote Code Execution
Silverlight Double Deference Vulnerability (CVE-2013-0074) MS Rating: Critical
A remote code execution vulnerability exists in Microsoft Silverlight that can allow a specially crafted Silverlight application to access memory in an unsafe manner. An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the current user. An attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
MS13-023 Vulnerability in Microsoft Visio Viewer 2010 Could Allow Remote Code Execution
Visio Viewer Tree Object Type Confusion Vulnerability (CVE-2013-0079) MS Rating: Critical
A remote code execution vulnerability exists in the way that Microsoft Visio Viewer handles memory when rendering specially crafted Visio files. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less affected than users who operate with administrative user rights.
MS13-024 Vulnerabilities in SharePoint Could Allow Elevation of Privilege
Callback Function Vulnerability (CVE-2013-0080) MS Rating: Important
An elevation of privilege vulnerability exists in Microsoft SharePoint Server. An attacker who successfully exploited this vulnerability could allow an attacker to elevate their access to the server after obtaining sensitive system data.
SharePoint XSS Vulnerability (CVE-2013-0083) MS Rating: Critical
An elevation of privilege vulnerability exists in Microsoft SharePoint Server. An attacker who successfully exploited this vulnerability could potentially issue SharePoint commands in the context of an administrative user on the site.
SharePoint Directory Traversal Vulnerability (CVE-2013-0084) MS Rating: Important
An elevation of privilege vulnerability exists in Microsoft SharePoint Server. An attacker who successfully exploited this vulnerability could allow an attacker to elevate their access to the server after obtaining sensitive system data.
Buffer Overflow Vulnerability (CVE-2013-0085) MS Rating: Moderate
A denial of service vulnerability exists in Microsoft SharePoint Server. An attacker who successfully exploited this vulnerability could cause the W3WP process on an affected version of SharePoint Server to terminate, causing the SharePoint site, and any other sites running under that process, to become unavailable until the process is restarted.
MS13-025 Vulnerability in Microsoft OneNote Could Allow Information Disclosure
Buffer Size Validation Vulnerability (CVE-2013-0086) MS Rating: Important
An information disclosure vulnerability exists in the way that Microsoft OneNote allocates memory from parsing a specially crafted OneNote (.ONE) file.
MS13-026 Vulnerability in Office Outlook for Mac Could Allow Information Disclosure
Unintended Content Loading Vulnerability (CVE- 2013-0095) MS Rating: Important
An information disclosure vulnerability exists in the way that Microsoft Outlook for Mac 2008 and Microsoft Outlook for Mac 2011 load specific content tags in an HTML5 email message.
MS13-027 Vulnerabilities in Kernel-Mode Drivers Could Allow Elevation Of Privilege
Windows USB Descriptor Vulnerability (CVE-2013-1285) MS Rating: Important
An elevation of privilege vulnerability exists when Windows USB drivers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs, view, change, or delete data, or create new accounts with full administrative rights.
Windows USB Descriptor Vulnerability (CVE-2013-1287) MS Rating: Important
An elevation of privilege vulnerability exists when Windows USB drivers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs, view, change, or delete data, or create new accounts with full administrative rights.
Windows USB Descriptor Vulnerability (CVE-2013-1286) MS Rating: Important
An elevation of privilege vulnerability exists when Windows USB drivers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs, view, change, or delete data, or create new accounts with full administrative rights.
More information on the vulnerabilities being addressed this month is available at Symantec’s free SecurityFocus portal and to our customers through the DeepSight Threat Management System.
Trend Micro introduces a new and complete end user protection suite, adding comprehensive data protection capabilities across endpoint, mobile, mail and gateway for smart, simple, security that fits.
Revision Note: V10.0 (March 12, 2013): Added the 2824670 update to the Current Update section.
Summary: Microsoft is aware of vulnerabilities in Adobe Flash Player in Internet Explorer 10 on all supported editions of Windows 8,…
Security? Yes! All this fuss about WordPress website security. Having a WordPress site is great, blogging at it makes you feel like you own an Empire. But somehow, it never remains safe when intruders get in. When they try to dethrone you. No matter what happens, you got to do what… Read more »
In the quarterly McAfee Threats Reports we offer our readers some charts on the prevalence of messaging botnets. For the last quarter of 2012, we announced the continuing decline in global messaging botnet infections as well as in former leaders Festi and Cutwail (see page 23). In this blog, I will detail the evolution of Read more…
Many major commercial banks are now offering consumers the choice to make deposits, send money, and perform other routine tasks using a mobile app. Bank customers can now use a smartphone or tablet for basic transactions like check deposits and bill payments, making it easier to keep an eye on finances without a trip to Read more…