Gladiator Research and Security

Microsoft has announced 6 new patches for its monthly patch release cycle.  These patches fix multiple Microsoft products, including Windows, Publisher, ISA Server, and Virtual PC.   Three patches are rated Critical, and allow for remote code execution on vulnerable systems.   The other three patches are rated Important, leading to elevation of privileges and a remote code exploit for Publisher.  Gladiator recommends that users immediately apply all Critical patches to their systems.

Microsoft has announced 10 new patches for its monthly patch release cycle.  These patches fix multiple Microsoft products, including Windows, Internet Explorer, and Microsoft Office.   Six patches are rated Critical, and affect all of the previously listed products, thereby allowing for remote code execution on vulnerable systems.  Gladiator recommends that users  immediately apply all Critical patches to their systems.

Microsoft has announced one new patch for its monthly release cycle.  Although it doesn’t sound like a lot, this patch fixes a critical vulnerability in PowerPoint that is already being exploited by malicious entities.  The patch is rated critical, and affects Microsoft PowerPoint 2000 through 2007.   This exploit allows remote code execution on vulnerable systems.  Gladiator recommends that users  immediately patch all systems with Microsoft Office installed. 

Microsoft has announced eight new patches for its monthly release cycle.  There are five critical patches, two important and one moderate patch, affecting Microsoft Office, Windows, Internet Explorer, DirectX, ISA Server, Wordpad, SearchPath and HTTP Services.  Some of these patches are extremely critical and should be applied immediately.  Exploit code is publicly available for them and they are currently being exploited by malware authors.  These exploits can and do allow remote code execution on vulnerable systems. 

Microsoft has announced three new patches for its monthly release cycle.  One patch is rated critical, and affects both server and client operating systems.  This patch covers a remote code execution vulnerability, and should be patched as soon as possible. The other two patches are rated important, and only affect servers.  These vulnerabilities could allow spoofing, but not remote code execution.

Microsoft has released four patches resolving two Critical and two Important vulnerabilities in various Microsoft products.

Microsoft has announced a patch for a critical vulnerability affecting several versions of Windows for both servers and workstations. The vulnerability could allow a remote attacker to access a system with full privileges.