January 2011 - Microsoft Releases 2 Security Advisories
Gravedad: Crítico
Fecha recomendada: 11 de enero de 2011
Descripción
Microsoft addresses the following vulnerabilities in its January batch of patches:
- (MS11-001) Vulnerability in Windows Backup Manager Could Allow Remote Code Execution (2478935)
Risk Rating: Important
This security update resolves a vulnerability in Windows Backup Manager, which could allow remote code execution. Read more here. - (MS11-002) Vulnerabilities in Microsoft Data Access Components Could Allow Remote Code Execution (2451910)
Risk Rating: Critical
This security update resolves two vulnerabilities in Microsoft Data Access Components (MDAC), which could allow remote code execution. Read more here.
Revelación de la información
Trend Micro Deep Security shields the following vulnerabilities using the specified rules. Trend Micro customers using OfficeScan with the Intrusion Defense Firewall plugin are also protected from attacks using these vulnerabilities.
| Microsoft Bulletin ID | Vulnerability ID | Identifier & Title | IDF First Pattern Version | IDF First Pattern Release Version |
|---|---|---|---|---|
| MS11-001 | CVE-2010-3145 | 1004566 - Backup Manager Insecure Library Loading Vulnerability | 11-002 | Jan 12, 2011 |
| MS11-002 | CVE-2011-0027 | 1004565 - Microsoft Data Access Object Recordset Remote Code Execution | 11-002 | Jan 12, 2011 |