Malaysian Computer Emergency Response Team

Services

Advisories Cyber999 Help Centre Malware Research Centre Incident Statistics

MyCERT Statistic

Reported Incidents based on General Incident Classification Statistics 2012

Help Centre

Reporting Channels

Definitions of Incidents

Cyber999 - Service Level Agreement

MyCERT Advisories

MyCERT Advisories, Alerts and Summaries for the year 2010

MA-242.082010 : MyCERT Alert - Latest Patch for Microsoft Vulnerabilities (August 2010)

Date of publication: 2010-08-03

1.0 Introduction

Microsoft has released a security bulletin MS10-046 to address vulnerability in Windows Shell, which is rated as Critical. As always, MyCERT recommends that users test and deploy the security updates as soon as possible.

2.0 The information on the critical vulnerability is as below:

2.1 Vulnerability in Windows Shell Could Allow Remote Code Execution
This security update resolves a publicly disclosed vulnerability in Windows Shell. The vulnerability could allow remote code execution if the icon of a specially crafted shortcut is displayed. An attacker who has successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Security Bulletin:
http://www.microsoft.com/technet/security/bulletin/MS10-046.mspx
2.2 Affected Products
The detail list of the vulnerable products and versions are as below:
Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista Service Pack 1 and Windows Vista Service Pack 2
Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for Itanium-Based Systems and Windows Server 2008 for Itanium-Based Systems Service Pack 2
Windows 7 for 32-bit Systems
Windows 7 for x64-based Systems
Windows Server 2008 R2 for x64-based Systems
Windows Server 2008 R2 for Itanium-based Systems

3.0 Recommendations

Users are recommended to perform the update immediately. All of the patches could be done almost automatically via the Windows Update application. Security updates are also available at:

http://go.microsoft.com/fwlink/?LinkId=21129

The how-to perform of the Windows Update is available at the following URL:

http://www.mycert.org.my/en/resources/os/main/main/detail/707/index.html

Generally, MyCERT advises the users of this software to be updated with the latest security announcements by the vendor. For further enquiries, please contact MyCERT through the following channels:

E-mail : mycert@mycert.org.my
Phone : 1-300-88-2999 (monitored during business hours)
Fax : +603 89453442
Handphone : +60 19 2665850 (24x7 call incident reporting)
SMS : CYBER999 REPORT <EMAIL> <COMPLAINT> to 15888
Business Hours : Mon - Fri 08:30 -17:30 MYT
Web: http://www.mycert.org.my

4.0 References

[1] http://www.microsoft.com/technet/security/bulletin/ms10-aug.mspx