Microsoft has released updates to address vulnerabilities in Microsoft Windows and Microsoft Office.
Install updates
The updates to address the Windows font vulnerability are available on the Microsoft Update site (requires Internet Explorer). We recommend enabling Automatic Updates.
Microsoft has released multiple security bulletins for important vulnerabilities in Microsoft Windows and Microsoft Office. These bulletins are described in the Microsoft Security Bulletin Summary for March 2010.
These vulnerabilities may allow an attacker to gain control of your computer or cause it to crash.
- Microsoft Security Bulletin Summary for March 2010 - <http://www.microsoft.com/technet/security/bulletin/MS10-mar.mspx>
- Microsoft Update - <https://update.microsoft.com/>
- Microsoft Update overview - <http://www.microsoft.com/security/updates/mu.aspx>
Feedback can be directed to US-CERT.
Produced 2010 by US-CERT, a government organization. Terms of use
March 09, 2010: Initial release
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Internet Explorer, and Microsoft Office.
Install updates
The updates to address the Windows font vulnerability are available on the Microsoft Update site (requires Internet Explorer). We recommend enabling Automatic Updates.
Microsoft has released multiple security bulletins for critical vulnerabilities in Microsoft Windows, Windows Server, Internet Explorer, and Microsoft Office. These bulletins are described in the Microsoft Security Bulletin Summary for February 2010.
These vulnerabilities may allow an attacker to gain control of your computer or cause it to crash.
- Microsoft Security Bulletin Summary for February 2010 - <http://www.microsoft.com/technet/security/bulletin/MS10-feb.mspx>
- Microsoft Update - <https://update.microsoft.com/>
- Microsoft Update overview - <http://www.microsoft.com/security/updates/mu.aspx>
Feedback can be directed to US-CERT.
Produced 2010 by US-CERT, a government organization. Terms of use
February 09, 2010: Initial release
Vulnerabilities in Internet Explorer could allow an attacker to take control of your computer.
Apply updates
Microsoft has released updates to address these vulnerabilities. Please see Microsoft Security Bulletin MS10-002 for more information.
Apply workarounds
Microsoft has provided workarounds for some of the vulnerabilities in MS10-002.
Microsoft has released updates for multiple vulnerabilities in Internet Explorer, including the vulnerability detailed in Microsoft Security Advisory 979352 and US-CERT Vulnerability Note VU#49251.
- Microsoft Security Bulletin MS10-002 - <http://www.microsoft.com/technet/security/bulletin/ms10-002.mspx>
- Microsoft Security Advisory 979352 - <http://www.microsoft.com/technet/security/advisory/979352.mspx>
- US-CERT Vulnerability Note VU#49251 - <http://www.kb.cert.org/vuls/id/492515>
Feedback can be directed to US-CERT.
Produced 2010 by US-CERT, a government organization. Terms of use
January 21, 2010: Initial release
Adobe has released Security bulletin APSB10-02, which describes multiple vulnerabilities affecting Adobe Reader and Acrobat.
Update
Adobe has released updates to address this issue. You are encouraged to read Adobe Security Bulletin APSB10-02 and update vulnerable versions of Adobe Reader and Acrobat.
Disable JavaScript in Adobe Reader and Acrobat
Disabling JavaScript may prevent some exploits. Acrobat JavaScript can be disabled using the Preferences menu (Edit -> Preferences -> JavaScript; un-check Enable Acrobat JavaScript).
Prevent Internet Explorer from automatically opening PDF documents
The installer for Adobe Reader and Acrobat configures Internet Explorer to automatically open PDF files without your interaction. However, you can set up a safer option that prompts you by importing the following as a .REG file:Windows Registry Editor Version 5.00
[HKEY_CLASSES_ROOT\AcroExch.Document.7]
"EditFlags"=hex:00,00,00,00Disable the display of PDF documents in your web browser
Preventing PDF documents from opening inside your web browser will partially mitigate this vulnerability. By applying this workaround, you may also lessen the possibility of future vulnerabilities.
To prevent PDF documents from automatically being opened in a web browser, do the following:
1. Open Adobe Acrobat Reader.
2. Open the Edit menu.
3. Choose the preferences option.
4. Choose the Internet section.
5. Un-check the "Display PDF in browser" check box.
Do not access PDF documents from untrusted sources
Do not open unfamiliar or unexpected PDF documents, particularly those hosted on websites or delivered as email attachments. Please see Cyber Security Tip ST04-010.
Adobe Security Advisory APSB10-02 describes a number of vulnerabilities affecting Adobe Reader and Acrobat. An attacker could exploit these vulnerabilities by convincing a user to open a specially crafted PDF file.
These vulnerabilities could allow a remote attacker to take control of your computer or cause it to crash.
- Adobe Security Bulletin APSB10-02 - <http://www.adobe.com/support/security/bulletins/apsb10-02.html>
- Vulnerability Note VU#508357 - <https://www.kb.cert.org/vuls/id/508357>
- Vulnerability Note VU#773545 - <https://www.kb.cert.org/vuls/id/773545>
Feedback can be directed to US-CERT.
Produced 2010 by US-CERT, a government organization. Terms of use
January 13, 2010: Initial release
Microsoft has released updates to address a vulnerability in Microsoft Windows. Microsoft has also published an Advisory about multiple vulnerabilities in Adobe Flash Player 6 that is included with Windows XP.
Install updates
The updates to address the Windows font vulnerability are available on the Microsoft Update site (requires Internet Explorer). We recommend enabling Automatic Updates.
Upgrade or Remove Adobe Flash Player 6
To address the Flash Player 6 vulnerabilitites, upgrade to a current version or remove Flash Player using the uninstaller.
Microsoft Security Bulletin MS10-001 describes a vulnerability in the Embedded Open Type (EOT) font engine in Windows. Microsoft Security Advisory (979267) notes multiple vulnerabilities in Adobe Flash Player 6 (formerly Macromedia Flash Player) that is included with Windows XP. The Advisory recommends that Windows XP users upgrade or remove Flash Player
These vulnerabilities may allow an attacker to gain control of your computer or cause it to crash.
- Microsoft Security Bulletin Summary for January 2010 - <http://www.microsoft.com/technet/security/bulletin/ms10-jan.mspx>
- CVE-2010-0018 - <http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0018>
- Vulnerabilities in Adobe Flash Player 6 Provided in Windows XP Could Allow Remote Code Execution - <http://www.microsoft.com/technet/security/advisory/979267.mspx>
- Vulnerability Note VU#204889 - <http://www.kb.cert.org/vuls/id/204889>
- Adobe Flash Player - <http://get.adobe.com/flashplayer/>
- How to uninstall the Adobe Flash Player plug-in and ActiveX control - <http://kb2.adobe.com/cps/141/tn_14157.html>
Feedback can be directed to US-CERT.
Produced 2010 by US-CERT, a government organization. Terms of use
January 12, 2010: Initial release
Adobe has released Security bulletin APSB09-19, which describes vulnerabilities affecting Adobe Flash Player and Adobe AIR.
Users are encouraged to update Flash Player 10.0.32.18 and earlier versions as well as Adobe AIR 1.5.2 and earlier versions to the latest version.
These vulnerabilities can be mitigated by disabling the Flash plugin or by using the NoScript extension for Mozilla Firefox or SeaMonkey to specify which websites can access the Flash plugin. For more information about securely configuring web browsers, please see the Securing Your Web Browser document.
Adobe Security Bulletin APSB09-19 describes vulnerabilities affecting Adobe Flash Player and Adobe AIR. Flash Player version 10.0.32.18 and earlier versions as well as Adobe AIR versions 1.5.2 and earlier are affected.
An attacker could exploit this vulnerability by convincing a user to visit a website that hosts a specially crafted SWF file. The Adobe Flash browser plugin is available for multiple web browsers and operating systems, any of which could be affected.
Feedback can be directed to US-CERT.
Produced 2009 by US-CERT, a government organization. Terms of use
December 09, 2009: Initial release
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Internet Explorer, and Microsoft Office.
Install updates
The updates to address these vulnerabilities are available on the Microsoft Update site (requires Internet Explorer). We recommend enabling Automatic Updates.
Microsoft has released multiple security bulletins for critical vulnerabilities in Windows and Office. These bulletins are described in the Microsoft Security Bulletin Summary for December 2009. These vulnerabilities may allow an attacker to gain control of your computer or cause it to crash.
- Microsoft Security Bulletin Summary for December 2009 - <http://www.microsoft.com/technet/security/bulletin/MS09-dec.mspx>
- Microsoft Update - <http://update.microsoft.com/>
- Microsoft Update Overview - <http://www.microsoft.com/security/updates/mu.aspx>
Feedback can be directed to US-CERT.
Produced 2009 by US-CERT, a government organization. Terms of use
December 08, 2009: Initial release
Microsoft has released updates to address vulnerabilities in Microsoft Windows and Office Word and Excel.
Install updates
The updates to address these vulnerabilities are available on the Microsoft Update site (requires Internet Explorer). We recommend enabling Automatic Updates.
Microsoft has released multiple security bulletins for critical vulnerabilities in Windows and Office Word and Excel. These bulletins are described in the Microsoft Security Bulletin Summary for November 2009. These vulnerabilities may allow an attacker to gain control of your computer or cause it to crash.
- Microsoft Security Bulletin Summary for November 2009 - <http://www.microsoft.com/technet/security/bulletin/ms09-nov.mspx>
- Microsoft Update Services - <https://update.microsoft.com/>
- Microsoft Update overview - <http://www.microsoft.com/security/updates/mu.aspx>
Feedback can be directed to US-CERT.
Produced 2009 by US-CERT, a government organization. Terms of use
November 10, 2009: Initial release
Adobe has released Security bulletin APSB09-15, which describes multiple vulnerabilities affecting Adobe Reader and Acrobat.
Update
Adobe has released updates to address this issue. Users are encouraged to read Adobe Security Bulletin APSB09-15 and update vulnerable versions of Adobe Reader and Acrobat.
Enable Data Execution Prevention (DEP) in Microsoft Windows
Consider enabling Data Execution Prevention (DEP) in supported versions of Windows. Though it doesn't completely resolve the problem, DEP can hinder the execution of attacks in some cases.
Microsoft has published detailed technical information about DEP in Security Research & Defense blog posts "Understanding DEP as a mitigation technology" part 1 and part 2. You should consider using DEP along with the patches and other mitigations described in this document.
Disable JavaScript in Adobe Reader and Acrobat
Disabling JavaScript may prevent some exploits. Acrobat JavaScript can be disabled using the Preferences menu (Edit -> Preferences -> JavaScript; un-check Enable Acrobat JavaScript).
Prevent Internet Explorer from automatically opening PDF documents
The installer for Adobe Reader and Acrobat configures Internet Explorer to automatically open PDF files without your interaction. However, you can set up a safer option that prompts the you by importing the following as a .REG file:Windows Registry Editor Version 5.00
[HKEY_CLASSES_ROOT\AcroExch.Document.7]
"EditFlags"=hex:00,00,00,00Disable the display of PDF documents in your Web browser
Preventing PDF documents from opening inside your Web browser will partially mitigate this vulnerability. By applying this workaround, you may also lessen the possibility of future vulnerabilities.
To prevent PDF documents from automatically being opened in a Web browser, do the following:
1. Open Adobe Acrobat Reader.
2. Open the Edit menu.
3. Choose the preferences option.
4. Choose the Internet section.
5. Un-check the "Display PDF in browser" check box.
Do not access PDF documents from untrusted sources
Do not open unfamiliar or unexpected PDF documents, particularly those hosted on Web sites or delivered as email attachments. Please see Cyber Security Tip ST04-010.
Adobe Security Advisory APSB09-15 describes a number of vulnerabilities affecting Adobe Reader and Acrobat. An attacker could exploit these vulnerabilities by convincing a user to open a specially crafted PDF file.
These vulnerabilities could allow a remote attacker to take control of your computer or cause it to crash.
- APSB09-15 Security Advisory for Adobe Reader and Acrobat - <http://www.adobe.com/support/security/bulletins/apsb09-15.html>
- Understanding DEP as a mitigation technology part 1 - <http://blogs.technet.com/srd/archive/2009/06/05/understanding-dep-as-a-mitigation-technology-part-1.aspx>
- Understanding DEP as a mitigation technology part 2 - <http://blogs.technet.com/srd/archive/2009/06/12/understanding-dep-as-a-mitigation-technology-part-2.aspx>
Feedback can be directed to US-CERT.
Produced 2009 by US-CERT, a government organization. Terms of use
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Internet Explorer, and Microsoft Office.
Install updates
The updates to address these vulnerabilities are available on the Microsoft Update site (requires Internet Explorer). We recommend enabling Automatic Updates.
Microsoft has released multiple security bulletins for critical vulnerabilities in Windows. These bulletins are described in the Microsoft Security Bulletin Summary for October 2009. These vulnerabilities may allow an attacker to gain control of your computer or cause it to crash.
- Microsoft Security Bulletin Summary for October 2009 - <http://www.microsoft.com/technet/security/bulletin/ms09-oct.mspx>
- Microsoft Windows Server Update Services - <http://technet.microsoft.com/en-us/wsus/default.aspx>
Feedback can be directed to US-CERT.
Produced 2009 by US-CERT, a government organization. Terms of use