RETIRED: Microsoft October 2012 Advance Notification Multiple Vulnerabilities

Microsoft has released advance notification that on October 9, 2012, they will be releasing seven security bulletins addressing twenty vulnerabilities.

The bulletins and their affected components are as follows:

One bulletin rated 'Critical' affecting Microsoft Word
Six bulletins rated 'Important' affecting Windows, Office, and SQL Server

This BID is being retired. The following individual records exist to better document the issues:

55781 Microsoft Word RTF File Use-After-Free Remote Code Execution Vulnerability
55780 Microsoft Word PAPX Section Corruption Remote Code Execution Vulnerability
55796 Microsoft Works CVE-2012-2550 RTF Data Handling Remote Memory Corruption Vulnerability
55778 Microsoft Windows Kerberos CVE-2012-2551 Denial of Service Vulnerability
55797 Microsoft SharePoint And Microsoft Lync HTML Sanitization Cross Site Scripting Vulnerability
55783 Microsoft SQL Server Report Manager CVE-2012-2552 Cross Site Scripting Vulnerability
55793 Microsoft Windows Kernel 'Win32k.sys' Integer Overflow Privilege Escalation Vulnerability
54531 Oracle Outside In Technology CVE-2012-1766 Remote Code Execution Vulnerability
54511 Oracle Outside In Technology CVE-2012-1767 Remote Code Execution Vulnerability
54536 Oracle Outside In Technology CVE-2012-1768 Remote Code Execution Vulnerability
54500 Oracle Outside In Technology CVE-2012-1769 Remote Code Execution Vulnerability
54541 Oracle Outside In Technology CVE-2012-1770 Remote Code Execution Vulnerability
54543 Oracle Outside In Technology CVE-2012-1771 Remote Code Execution Vulnerability
54497 Oracle Outside In Technology CVE-2012-1772 Remote Code Execution Vulnerability
54548 Oracle Outside In Technology CVE-2012-1773 Remote Code Execution Vulnerability
54546 Oracle Outside In Technology CVE-2012-3106 Remote Code Execution Vulnerability
54504 Oracle Outside In Technology CVE-2012-3107 Remote Code Execution Vulnerability
54550 Oracle Outside In Technology CVE-2012-3108 Remote Code Execution Vulnerability
54554 Oracle Outside In Technology CVE-2012-3109 Remote Code Execution Vulnerability
54506 Oracle Outside In Technology CVE-2012-3110 Remote Code Execution Vulnerability


 

Privacy Statement
Copyright 2010, SecurityFocus