Gladiator Research and Security

Microsoft has announced two new patches today to fix vulnerabilities that could allow remote code execution.  One patch is rated Critical by Microsoft and affects Microsoft Windows.  The other patch is rated Important by Microsoft and affects Microsoft Windows.  Gladiator recommends that users with impacted systems apply all Critical patches immediately. Detailed information regarding the patches can be found in Microsoft’s January Security Bulletin.  Summary information is included below:

• Vulnerabilities in Microsoft Data Access Components Could Allow Remote Code Execution (2451910) MS11-002 – This security update resolves two privately reported vulnerabilities in Microsoft Data Access Components. This security update is rated Critical by Microsoft.  The most severe vulnerabilities could allow remote code execution if a user views a specially-crafted web page.  A public exploit is currently available for one of these vulnerabilities. Gladiator recommends that users apply this patch as soon as possible.

• Vulnerability in Windows Backup Manager Could Allow Remote Code Execution (2478935) MS11-001 – This security update resolves a publicly disclosed vulnerability in Windows Backup Manager. This security update is rated Important by Microsoft.  The vulnerability could allow remote code execution if a user opens a legitimate Microsoft Backup file in a location with a malicious library file.  A public exploit is currently available for this vulnerability.  Gladiator recommends that users apply this patch during their standard patch cycle.

Gladiator recommends that users patch their systems immediately for MS11-002. All other patches can be applied during your normal patch window.

Reference Links:

• Microsoft Security Bulletin (http://www.microsoft.com/technet/security/bulletin/ms11-jan.mspx)
• SANS ISC Diary Entry (http://isc.sans.edu/diary.html?storyid=10252)