Microsoft Security Bulletins Coverage
SonicWALL has analyzed and addressed Microsoft's security advisories for the month of December, 2010. A list of issues reported, along with SonicWALL coverage information follows:
MS10-090 Cumulative Security Update for Internet Explorer (2416400)- CVE-2010-3340 - HTML Object Memory Corruption Vulnerability
IPS 6090 MS IE HTML Object Memory Corruption 1 (MS10-090) - CVE-2010-3342 - Cross-Domain Information Disclosure Vulnerability
Note: There are no known public exploits targeting this vulnerability. - CVE-2010-3343 - HTML Object Memory Corruption Vulnerability
IPS 6091 MS IE HTML Object Memory Corruption 2 (MS10-090) - CVE-2010-3345 - HTML Element Memory Corruption Vulnerability
Note: It is not feasible to detect the attacks at gateway level. - CVE-2010-3346 - HTML Element Memory Corruption Vulnerability
Note: It is not feasible to detect the attacks at gateway level. - CVE-2010-3348 - Cross-Domain Information Disclosure Vulnerability
Note: There are no known public exploits targeting this vulnerability. - CVE-2010-3962 - Uninitialized Memory Corruption Vulnerability
IPS 5908 Malicious HTML Style Tag 1
IPS 5943 MS IE Invalid Flag Reference Memory Corruption 1
- CVE-2010-3956 - OpenType Font Index Vulnerability
IPS 6087 Malicious Font File 7b - CVE-2010-3957 - OpenType Font Double Free Vulnerability
IPS 6088 Malicious Font File 8b - CVE-2010-3959 - OpenType CMAP Table Vulnerability
IPS 6089 Malicious Font File 9b
MS10-092 Vulnerability in Task Scheduler Could Allow Elevation of Privilege (2305420)
- CVE-2010-3338 - Task Scheduler Vulnerability
Note: Local elevation of privilege.
MS10-093 Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (2424434)
- CVE-2010-3967 - Insecure Library Loading Vulnerability
Note: It is not feasible to detect the attacks at gateway level.
MS10-094 Vulnerability in Windows Media Encoder Could Allow Remote Code Execution (2447961)
- CVE-2010-3965 - Insecure Library Loading Vulnerability
Note: It is not feasible to detect the attacks at gateway level.
MS10-095 Vulnerability in Microsoft Windows Could Allow Remote Code Execution (2385678)
- CVE-2010-3966 - BranchCache Insecure Library Loading Vulnerability
Note: It is not feasible to detect the attacks at gateway level.
MS10-096 Vulnerability in Windows Address Book Could Allow Remote Code Execution (2423089)
- CVE-2010-3147 - Insecure Library Loading Vulnerability
Note: It is not feasible to detect the attacks at gateway level.
- CVE-2010-3144 - Internet Connection Signup Wizard Insecure Library Loading Vulnerability
Note: It is not feasible to detect the attacks at gateway level.
MS10-098 Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2436673)
- CVE-2010-3939 - Win32k Buffer Overflow Vulnerability
Note: Local elevation of privilege. - CVE-2010-3940 - Win32k PFE Pointer Double Free Vulnerability
Note: Local elevation of privilege. - CVE-2010-3941 - Win32k Double Free Vulnerability
Note: Local elevation of privilege. - CVE-2010-3942 - Win32k WriteAV Vulnerability
Note: Local elevation of privilege. - CVE-2010-3943 - Win32k Cursor Linking Vulnerability
Note: Local elevation of privilege. - CVE-2010-3944 - Win32k Memory Corruption Vulnerability
Note: Local elevation of privilege.
MS10-099 Vulnerability in Routing and Remote Access Could Allow Elevation of Privilege (2440591)
- CVE-2010-3963 - Kernel NDProxy Buffer Overflow Vulnerability
Note: Local elevation of privilege.
MS10-100 Vulnerability in Consent User Interface Could Allow Elevation of Privilege
(2442962)
- CVE-2010-3961 - Consent UI Impersonation Vulnerability
Note: Local elevation of privilege.
MS10-101 Vulnerability in Windows Netlogon Service Could Allow Denial of Service (2207559)
- CVE-2010-2742 - Netlogon RPC Null dereference DOS Vulnerability
IPS 6086 MS Windows Netlogon Service DoS
MS10-102 Vulnerability in Hyper-V Could Allow Denial of Service (2345316)
- CVE-2010-3960 - Hyper-V VMBus Vulnerability
Note: It is not feasible to detect the attacks at gateway level.
MS10-103 Vulnerabilities in Microsoft Publisher Could Allow Remote Code Execution (2292970)
- CVE-2010-2569 - Size Value Heap Corruption in pubconv.dll Vulnerability
Note: There are no known public exploits targeting this vulnerability. - CVE-2010-2570 - Heap Overrun in pubconv.dll Vulnerability
IPS 6084 Malicious Publisher Document 1b - CVE-2010-2571 - Memory Corruption Due To Invalid Index Into Array in Pubconv.dll Vulnerability
Note: There are no known public exploits targeting this vulnerability. - CVE-2010-3954 - Microsoft Publisher Memory Corruption Vulnerability
Note: There are no known public exploits targeting this vulnerability. - CVE-2010-3955 - Array Indexing Memory Corruption Vulnerability
IPS 6085 Malicious Publisher Document 2b
MS10-104 Vulnerability in Microsoft SharePoint Could Allow Remote Code Execution (2455005)
- CVE-2010-3964 - Malformed Request Code Execution Vulnerability
IPS 6083 MS SharePoint Malformed Request 1b
- CVE-2010-3945 - CGM Image Converter Buffer Overrun Vulnerability
IPS 6077 Malicious Image File 1b - CVE-2010-3946 - PICT Image Converter Integer Overflow Vulnerability
IPS 6078 Malicious Image File 2b - CVE-2010-3947 - TIFF Image Converter Heap Overflow Vulnerability
IPS 6079 Malicious Image File 3b - CVE-2010-3949 - TIFF Image Converter Buffer Overflow Vulnerability
IPS 6080 Malicious Image File 4b - CVE-2010-3950 - TIFF Image Converter Memory Corruption Vulnerability
IPS 6080 Malicious Image File 4b - CVE-2010-3951 - FlashPix Image Converter Buffer Overflow Vulnerability
IPS 6081 Malicious Image File 5b - CVE-2010-3952 - FlashPix Image Converter Heap Corruption Vulnerability
IPS 6082 Malicious Image File 6b
MS10-106 Vulnerability in Microsoft Exchange Server Could Allow Denial of Service (2407132)
- CVE-2010-3937 - Exchange Server Infinite Loop Vulnerability
Note: There are no known public exploits targeting this vulnerability.