Nine critical updates for Microsoft systems in April 2011
In its security bulletin summary for April 2011 Microsoft has published nine updates for critical and eight updates for important vulnerabilities in its operating systems / applications.
Critical is Microsoft's highest vulnerability rating.
A summary describing briefly the vulnerabilities is available from Microsoft's Security Bulletin Summary for April 2011.
From this page you will also find links to more detailed information in Microsoft's Security Bulletins MS11-018- MS11-034.
The critical updates address the following issues:
- One publicly disclosed and four privately reported vulnerabilities in Internet Explorer.
- One publicly disclosed and one privately reported vulnerabilities in Microsoft Windows SMB client
- One privately reported vulnerabilitiy in Microsoft Windows SMB server
- One publicly disclosed and two privately reported vulnerabilities in Microsoft Windows ActiveX Kill Bits
- One privately reported vulnerabilitiy in Microsoft .NET framework
- One privately reported vulnerabilitiy in Microsoft Windows GDI+
- One privately reported vulnerabilitiy in Windows DNS resolution
- One privately reported vulnerabilitiy in JScript and VBScript scripting engines
- One privately reported vulnerabilitiy in the OpenType Compact Font Format (CFF) driver.
Updates that fixes the vulnerabilities are available from Windows automatic update mechanism for systems that support this. Alternatively, one may download updates from http://windowsupdate.microsoft.com.
Norman advices all affected users to download the relevant security updates as soon as possible, to be protected from potential exploits.
