2011 年 3 月:マイクロソフト 定例セキュリティ更新プログラム情報
2013年2月20日
危険度: : 高
情報公開日: 3 08, 2011
概要
Microsoft addresses the following vulnerabilities in its March batch of patches:
- (MS11-015) Vulnerabilities in Windows Media Could Allow Remote Code Execution (2510030)
Risk Rating: Critical
This security update addresses a vulnerability in DirectShow and a vulnerability in Windows Media Player and Windows Media Center. An attacker could execute arbitrary code if a user opens a specially crafted Microsoft Digital Video Recording (.DVR-MS) file. Read more here. - (MS11-016) Vulnerability in Microsoft Groove Could Allow Remote Code Execution (2494047)
Risk Rating: Important
This security update resolves a vulnerability in Microsoft Groove, which could allow remote attackers to execute code on the vulnerable system. The attack works if a user opens a legitimate Groove-related file that is located in the same network directory as a specially crafted library file. Read more here. - (MS11-017) Vulnerability in Remote Desktop Client Could Allow Remote Code Execution (2508062)
Risk Rating: Important
This security update addresses a vulnerability in Windows Remote Desktop Client, which could allow remote code execution if a user opens a legitimate Remote Desktop configuration (.RDP) file. Read more here.
トレンドマイクロの対策
「Trend Micro 脆弱性対策オプション(ウイルスバスター コーポレートエディション プラグイン製品)」をご利用のユーザは、以下のフィルタをご参照ください。
| Microsoft セキュリティ情報 ID | CVE識別番号 | フィルタ番号およびフィルタ名 | Deep Security パターンバージョン | Deep Security パターンリリース日 |
|---|---|---|---|---|
| MS11-015 |
CVE-2011-0032 |
1004373 - Identified Microsoft DLL File Over Network Share |
|
2010年8月25日 |
| 1004566 - Identified Suspicious Microsoft DLL File Over Network Share | 11-009 | 2011年3月9日 | ||
| MS11-016 |
CVE-2010-3146 |
1004373 - Identified Microsoft DLL File Over Network Share | 10-028 | 2010年8月25日 |
| 1004566 - Identified Suspicious Microsoft DLL File Over Network Share | 11-009 | 2011年3月9日 | ||
| MS11-017 |
CVE-2011-0029 |
1004373 - Identified Microsoft DLL File Over Network Share | 10-028 | 2010年8月25日 |