RETIRED: Microsoft October 2011 Advance Notification Multiple Vulnerabilities

Microsoft has released advance notification that on October 11, 2011, they will be releasing eight security bulletins addressing 23 vulnerabilities.

The bulletins and their affected components are as follows:

Two bulletins rated 'Critical' affecting .NET, Silverlight, and Internet Explorer
Six bulletins rated 'Important' affecting Windows, Forfront Unified Access Gateway, and Host Integration Server

This BID is being retired. The following individual records exist to better document the issues:

49941 Microsoft Windows AFD Driver CVE-2011-2005 Local Privilege Escalation Vulnerability
49943 Microsoft Windows Media Center DLL Loading Arbitrary Code Execution Vulnerability
49947 Microsoft Internet Explorer Uninitalized Object CVE-2011-1993 Memory Corruption Vulnerability
49960 Microsoft Internet Explorer 'OLEAuto32.dll' CVE-2011-1995 Memory Corruption Vulnerability
49961 Microsoft Internet Explorer Option Element CVE-2011-1996 Memory Corruption Vulnerability
49962 Microsoft Internet Explorer OnLoad Event CVE-2011-1997 Memory Corruption Vulnerability
49963 Microsoft Internet Explorer 'Jscript9.dll' CVE-2011-1998 Memory Corruption Vulnerability
49964 Microsoft Internet Explorer Select Element CVE-2011-1999 Memory Corruption Vulnerability
49965 Microsoft Internet Explorer Body Element CVE-2011-2000 Memory Corruption Vulnerability
49966 Microsoft Internet Explorer Virtual Function Table CVE-2011-2001 Memory Corruption Vulnerability
49968 Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-1985) Local Privilege Escalation Vulnerability
49972 Microsoft Forefront Unified Access Gateway (CVE-2011-1895) HTTP Response Splitting Vulnerability
49973 Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-1985) Local Privilege Escalation Vulnerability
49974 Microsoft Forefront Unified Access Gateway (CVE-2011-1897) Cross-Site Scripting Vulnerability
49975 Microsoft Windows Kernel '.fon' Font File Remote Code Execution Vulnerability
49976 Microsoft Windows Active Accessibility DLL Loading Arbitrary Code Execution Vulnerability
49979 Microsoft Forefront Unified Access Gateway (CVE-2011-1895) HTTP Response Splitting Vulnerability
49980 Microsoft Forefront Unified Access Gateway Null Session Cookie Denial of Service Vulnerability
49981 Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-2011) Local Privilege Escalation Vulnerability
49983 Microsoft Forefront Unified Access Gateway Signed Java Applet Remote Code Execution Vulnerability
49997 Microsoft Host Integration Server CVE-2011-2007 Remote Denial Of Service Vulnerability
49998 Microsoft Host Integration Server CVE-2011-2008 Remote Denial Of Service Vulnerability
49999 Microsoft Silverlight & .NET Framework Inheritance Restriction Remote Code Execution Vulnerability


 

Privacy Statement
Copyright 2010, SecurityFocus