Microsoft today released a batch of 17 security updates for a Patch Tuesday that cover 64 vulnerabilities in Microsoft Windows, Office, Internet Explorer, Visual Studio, .NET Framework and GDI+.
ine of the bugs are rated critical, while eight are important. One of the "important" bulletins includes 30 vulnerabilities in one bug, MS11-034, and they all share the same couple of root causes, Microsoft said.
Also today, Microsoft introduced a Rootkit Evasion Prevention tool and Office File Validation, while was originally announced in December 2010 but is now available for Office 2003 and 2007.
Office File Validation, "which is included in Word, Excel, PowerPoint and Publisher ... will validate the file structure as it is being opened by the user," said Modesto Estrada, Office program manager. "The validation will check the file to make sure it conforms to expected Office specifications. If this process fails the user will be notified of potential issues."
The rookit tool, meanwhile, "will expose an installed rootkit and give your anti-malware software the ability to detect and remove the rootkit," said Dustin Childs, senior security program manager, MSRC. "For a rootkit to be successful it must stay hidden and persistent on a system. One way we have seen rootkits hide themselves on 64-bit systems is bypassing driver signing checks done by winload.exe."
Posts
