Microsoft Black Tuesday: 16 Bulletins, 34 Vulnerabilities, Lots of Patching

June 14, 2011 by Corey Nachreiner 2 Comments

If you plan on enjoying a Father’s Day of BBQ and relaxation, you better start patching your Microsoft networks now. Otherwise, you may not have time to install 16 bulletins worth of patches by this weekend.

Microsoft has posted their June Patch Day summary, which contains 16 security bulletins, nine of which they rate as Critical. The bulletins fix around 34 vulnerabilities in many Microsoft products, including:

  • Internet Explorer (IE)
  • Windows (and components that ship with it)
  • Office
  • SQL Server
  • .NET Framework
  • Silverlight
  • Visual Studio
  • Forefront Threat Management Gateway

With so many Critical updates, it’s hard to say which to install first. In general, I recommend you follow the priority recommended in Microsoft’s summary bulletin. That said, lately attackers have  focused on leveraging web and browser-based vulnerabilities to install malware via “Drive-by Downloads.” So you may want to install the Critical IE updates before the others.

We’ll post more detailed alerts about these flaws, and how to fix them, shortly.  Corey Nachreiner, CISSP

Editorial Articles
, , , , , , , , , , ,

About Corey Nachreiner

Corey Nachreiner has been with WatchGuard since 1999 and has since written more than a thousand concise security alerts and easily-understood educational articles for WatchGuard users. His security training videos have generated hundreds of letters of praise from thankful customers and accumulated more than 100,000 views on YouTube and Google Video. A Certified Information Systems Security Professional (CISSP), Corey speaks internationally and is often quoted by other online sources, including C|NET, eWeek, and Slashdot. Corey enjoys "modding" any technical gizmo he can get his hands on, and considers himself a hacker in the old sense of the word. Previous Meetings core
View all posts by Corey Nachreiner

2 Responses to “Microsoft Black Tuesday: 16 Bulletins, 34 Vulnerabilities, Lots of Patching”

  1. Brian Risley Reply June 14, 2011 at 1:09 pm

    Link is for April patch day, needs to be June. Change apr in link to jun.

    • Corey Nachreiner Reply June 14, 2011 at 1:11 pm

      Thanks. I got the first link right, but the second was still April, as you mentioned… fixed now.

      Cheers!

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

Follow

Get every new post delivered to your Inbox.

Join 6,892 other followers