Cisco Event Response: Microsoft Security Bulletin Release for July 2010

July 13, 2010

Microsoft published its monthly security bulletin release on July 13, 2010. Four bulletins were released that addressed 5 individual vulnerabilities. The bulletins address vulnerabilities in Microsoft Office and Windows products. Exploitation of the vulnerabilities could allow attackers to execute arbitrary code on targeted systems.

Cisco Security
Intelligence Operations

Event Intelligence

The following table identifies Cisco Security Intelligence Operations content and Cisco mitigation information that is associated with this Microsoft release:

Microsoft Security Bulletin	Cisco IntelliShield Alert	CVE ID	Cisco Mitigations	CVSS Base Score
Microsoft Security Bulletin MS10-042 Vulnerability in Help and SupportCenter Could Allow Remote Code Execution	Microsoft Windows Help and Support Center Whitelist Bypass Vulnerability	CVE-2010-1885	Cisco IPS Signature 26599-0 Cisco Security MARS Cisco ASA/FWSM Cisco ACE	9.3
Microsoft Security Bulletin MS10-043 Vulnerability in Canonical Display Driver Could Allow Remote Code Execution	Microsoft Windows Canonical Display Driver Remote Code Execution Vulnerability	CVE-2009-3678	Cisco IPS Signature 26080-0 Cisco Security MARS	5.1
Microsoft Security Bulletin MS10-044 Vulnerabilities in Microsoft Office Access ActiveX Controls Could Allow Remote Code Execution	Microsoft Office Access ActiveX Control Arbitrary Code Execution Vulnerability	CVE-2010-0814	Cisco IPS Signature 27060-0 Cisco Security MARS Cisco ASA/FWSM Cisco ACE	9.3
	Microsoft Office FieldList ActiveX Control Arbitrary Code Execution Vulnerability	CVE-2010-1881	Cisco ASA/FWSM Cisco ACE	9.3
Microsoft Security Bulletin MS10-045 Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution	Microsoft Office SMB Attachment Processing Arbitrary Code Execution Vulnerability	CVE-2010-0266	Cisco IPS Signature 27119-0 Cisco Security MARS	9.3

Cisco Security Intelligence Operations

Cisco Applied Mitigation Bulletins provide identification and mitigation techniques that administrators can deploy on Cisco network devices. Cisco Intrusion Prevention System (IPS) signatures, Cisco Security Monitoring, Analysis, and Response System Incidents, Cisco ACE Application Control Engine, and firewall inspection, normalization, and access control lists are discussed in this bulletin.

Cisco Applied Mitigation Bulletin: Microsoft Security Bulletin Release for July 2010

Impact on Cisco Products

Impact Assessment of July 2010 Microsoft Security Bulletins on Cisco Contact Center and Self Service Products
Impact Assessments for Cisco Contact Center and Self Service Products evaluate Microsoft security bulletins and associated software updates for potential impact to Cisco Contact Center products. For each respective Microsoft Security Bulletin, a Microsoft update is assigned one of three categorical ratings: Impacting, Deferred, or Not Applicable.

Cisco IP Telephony Operating System, SQL Server, Security Updates
This document contains information on software updates for tracking Cisco-supported operating system, SQL Server, and security files that are available for web download. These updates support all versions of Cisco Unified CallManager, Cisco Conference Connection, Cisco Personal Assistant, Cisco IP Interactive Voice Response, and Cisco IP Call Center Express, Cisco Emergency Responder, Cisco Customer Voice Portal, and Cisco MeetingPlace. This document does not support Cisco Unity or servers where Cisco Unity is installed.

Recommended Microsoft Hot Fixes for Cisco Media Experience 3000
These documents evaluate the monthly Microsoft security bulletins for applicability to the Cisco Media Experience Engine (MXE) 3000 product line. The bulletins clarify which Microsoft Security Bulletins should be applied to affected hardware and software levels of Cisco MXE 3000 products.