Gladiator Research and Security

Microsoft has announced six new patches for its monthly patch release cycle.  These patches are for Microsoft Windows and Microsoft Office.  Three patches are rated Critical and affect Microsoft Windows and Microsoft Office, allowing for remote code execution on vulnerable systems.  Gladiator recommends that users immediately apply all Critical patches to their systems. Detailed information for the patches can be found in Microsoft’s December Security Bulletin.  Summary information is included below:

GSA Reference Number: AD091124-01

Simply Put: Microsoft Internet Explorer (IE) 6 and 7 are vulnerable to a remote code execution vulnerability.  This vulnerability was released to the public earlier this week.  Currently, this exploit is not deemed reliable, meaning that it is difficult to exploit consistently.  However, there will most likely be a reliable version released in the near future.  This exploit also could be triggered by an HTML email message if using Microsoft Outlook, Outlook Express, or Microsoft Mail, as these products use IE to display these messages.

Microsoft has announced six new patches for its monthly patch release cycle.  These patches are for Microsoft Windows and Microsoft Office.  Three patches are rated Critical and affect Microsoft Windows, allowing for remote code execution on vulnerable systems.  Gladiator recommends that users immediately apply all Critical patches to their systems. Detailed information for the patches can be found in Microsoft’s November Security Bulletin. 

Microsoft has announced 13 new patches for its monthly patch release cycle.  These patches fix multiple Microsoft products, including Windows, Internet Explorer, Microsoft Office, and Microsoft .NET Framework.   Eight patches are rated Critical, and affect all of the previously listed products, thereby allowing for remote code execution on vulnerable systems.  Gladiator recommends that users  immediately apply all Critical patches to their systems. Detailed information for the patches can be found in Microsoft’s October Security Bulletin. 

Microsoft has announced five new patches for its monthly patch release cycle.  These patches fix multiple vulnerabilities in Microsoft Windows.   All five patches are rated Critical, allowing for remote code execution on vulnerable systems.   Gladiator recommends that users immediately apply all Critical patches to their systems. Detailed information for the patches can be found in Microsoft’s September Security Bulletin. 

Microsoft has announced nine new patches for its monthly patch release cycle.  These patches fix multiple Microsoft products, including Windows, Remote Desktop, Office, Telnet, and more.   Five patches are rated Critical, allowing for remote code execution on vulnerable systems.   The other four patches are rated Important, leading to elevation of privileges, denial of service, and a remote code exploit for Telnet.  Gladiator recommends that users immediately apply all Critical patches to their systems. Detailed information for the patches can be found in Microsoft’s August Security Bulletin. 

Microsoft has announced two out-of-band patches that are currently available.  (Out-of-band patches are released outside of Microsoft’s normal Patch Tuesday release cycle and usually fix vulnerabilities that are currently attacking Windows systems. ) These patches apply to two Microsoft products, Visual Studio and Internet Explorer.   These patches are rated Critical, and allow for remote code execution on vulnerable systems.   Gladiator recommends that users immediately apply all Critical patches to their systems.