Cisco Event Response: Microsoft Security Bulletin Release for June 2010

June 8, 2010

Microsoft published its monthly security bulletin release on June 8, 2010. Ten bulletins were released that addressed 33 individual vulnerabilities.  The bulletins address vulnerabilities in Microsoft Internet Explorer, Office, Windows, and Windows Server products. Exploitation of the vulnerabilities could allow attackers to bypass authentication remotely, conduct cross-site scripting attacks, cause a denial of service, access sensitive information, gain elevated privileges, or execute arbitrary code on a system.

 
SIO globe art

spacer graphic
spacer graphic
spacer graphic
Cisco Security
Intelligence Operations

Event Intelligence

The following table identifies Cisco Security Intelligence Operations content and Cisco mitigation information that is associated with this Microsoft release:

Microsoft Security Bulletin Cisco IntelliShield Alert
CVE ID
Search CVEs
 Cisco Mitigations
CVSS
Base Score
CVSS Q&A

Microsoft Security Bulletin MS10-032

Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege

 Microsoft Windows Kernel Object Validation Privilege Escalation Vulnerability
CVE-2010-0484
9.3
Microsoft Windows Kernel Window Creation Privilege Escalation Vulnerability
CVE-2010-0485
9.3
Microsoft Windows Kernel TrueType Font Processing Privilege Escalation Vulnerability
CVE-2010-1255
Cisco ASA/FWSM
Cisco ACE
9.3

Microsoft Security Bulletin MS10-033

Vulnerabilities in Media Decompression Could Allow Remote Code Execution

 Microsoft DirectShow Media File Decompression Arbitrary Code Execution Vulnerability
CVE-2010-1879
Cisco IPS Signature 26280-0
Cisco Security MARS
9.3
Microsoft DirectShow Media File Processing Arbitrary Code Execution Vulnerability
CVE-2010-1880
Cisco IPS Signature 26299-0
Cisco Security MARS
9.3

Microsoft Security Bulletin MS10-034

Cumulative Security Update of ActiveX Kill Bits

 Microsoft Windows Data Analyzer ActiveX Control Arbitrary Code Execution Vulnerability
CVE-2010-0252
Cisco IPS Signature 26300-0
Cisco Security MARS
Cisco ASA/FWSM
Cisco ACE
9.3
Microsoft Internet Explorer Developer Tools ActiveX Control Arbitrary Code Execution Vulnerability
CVE-2010-0811
Cisco IPS Signature 26202-0
Cisco Security MARS
Cisco ASA/FWSM
Cisco ACE
9.3

Microsoft Security Bulletin MS10-035

Cumulative Security Update for Internet Explorer

 Microsoft Internet Explorer Remote Information Disclosure Vulnerability
CVE-2010-0255
Cisco IPS Signature 26359-0
Cisco Security MARS
4.3
Multiple Microsoft Products toStaticHTML Cross-Site Scripting Vulnerability
CVE-2010-1257
Cisco IPS Signature 26401-0
Cisco Security MARS
4.3
Microsoft Internet Explorer Uninitialized Memory Object Arbitrary Code Execution Vulnerability
CVE-2010-1259
Cisco IPS Signature 26402-0
Cisco Security MARS
9.3
Microsoft Internet Explorer HTML Element Processing Arbitrary Code Execution Vulnerability
CVE-2010-1260
7.6
Microsoft Internet Explorer Developer Toolbar Uninitialized Memory Access Arbitrary Code Execution Vulnerability
CVE-2010-1261
7.6
Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerability
CVE-2010-1262
Cisco IPS Signature 26179-0
Cisco Security MARS
9.3

Microsoft Security Bulletin MS10-036

Vulnerability in COM Validation in Microsoft Office Could Allow Remote Code Execution

 Microsoft Office COM Object Validation Arbitrary Code Execution Vulnerability
CVE-2010-1263
9.3

Microsoft Security Bulletin MS10-037

Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Elevation of Privilege

 Microsoft Windows OpenType Compact Font Format Processing Privilege Escalation Vulnerability
CVE-2010-0819
Cisco ASA/FWSM
Cisco ACE
6.8

Microsoft Security Bulletin MS10-038

Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution

 Microsoft Office Excel Record Processing Memory Corruption Vulnerability
CVE-2010-0821
Cisco IPS Signature 26221-0
Cisco Security MARS
9.3
Microsoft Office Excel Object Processing Stack Overflow Vulnerability
CVE-2010-0822
Cisco IPS Signature 26240-0
Cisco Security MARS
9.3
Microsoft Office Excel Chart Sheet Substream Processing Arbitrary Code Execution Vulnerability
CVE-2010-0823
Cisco IPS Signature 26281-0
Cisco Security MARS
9.3
Microsoft Office Excel Record Parsing Memory Corruption Vulnerability
CVE-2010-0824
Cisco IPS Signature 26380-0
Cisco Security MARS
9.3
Microsoft Office Excel Record Parsing Arbitrary Code Execution Vulnerability
CVE-2010-1245
Cisco IPS Signature 26319-0
Cisco Security MARS
9.3
Microsoft Office Excel Real-Time Data Processing Memory Corruption Vulnerability
CVE-2010-1246
Cisco IPS Signature 26400-0
Cisco Security MARS
9.3
Microsoft Office Excel Document Processing Arbitrary Code Execution Vulnerability
CVE-2010-1247
Cisco IPS Signature 26201-0
Cisco Security MARS
9.3
Microsoft Office Excel HFPicture Object Processing Arbitrary Code Execution Vulnerability
CVE-2010-1248
Cisco IPS Signature 26200-0
Cisco Security MARS
9.3
Microsoft Office Excel Document Processing Memory Corruption Vulnerability
CVE-2010-1249
Cisco IPS Signature 26219-0
Cisco Security MARS
9.3
Microsoft Office Excel Object Processing Memory Corruption Vulnerability
CVE-2010-1250
Cisco IPS Signature 26220-0
Cisco Security MARS
9.3
Microsoft Office Excel Record Processing Stack Overflow Vulnerability
CVE-2010-1251
Cisco IPS Signature 26279-0
Cisco Security MARS
9.3
Microsoft Office Excel String Variable Processing Arbitrary Code Execution Vulnerability
CVE-2010-1252
Cisco IPS Signature 26419-0
Cisco Security MARS
9.3
Microsoft Office Excel ActiveX Data Object Processing Memory Corruption Vulnerability
CVE-2010-1253
Cisco IPS Signature 26241-0
Cisco Security MARS
9.3
Microsoft Office for Mac Open XML Permissions Privilege Escalation Vulnerability
CVE-2010-1254
9.3

Microsoft Security Bulletin MS10-039

Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege

 Microsoft SharePoint Server 2007 Cross-Site Scripting Vulnerability
CVE-2010-0817
6.4
Microsoft Office SharePoint Services Help Page Processing Denial of Service Vulnerability
CVE-2010-1264
Cisco IPS Signature 26259-0
Cisco Security MARS
5.0

Microsoft Security Bulletin MS10-040

Vulnerability in Internet Information Services Could Allow Remote Code Execution

 Microsoft Internet Information Services Authentication Request Processing Arbitrary Code Execution Vulnerability
CVE-2010-1256
6.8

Microsoft Security Bulletin MS10-041

Vulnerability in Microsoft .NET Framework Could Allow Tampering

 Multiple Vendor XML Signature Syntax and Processing HMAC Truncation Remote Authentication Bypass Vulnerability
CVE-2009-0217
Cisco IPS Signature 26379-0
Cisco Security MARS
5.0

Cisco Security Intelligence Operations

Cisco Applied Mitigation Bulletins provide identification and mitigation techniques that administrators can deploy on Cisco network devices. Cisco Intrusion Prevention System (IPS) signatures, Cisco Security Monitoring, Analysis, and Response System Incidents, Cisco ACE Application Control Engine, Cisco Security Agent, and firewall inspection, normalization, and access control lists are discussed in this bulletin.

Cisco Applied Mitigation Bulletin: Microsoft Security Bulletin Release for June 2010

Impact on Cisco Products

Impact Assessment of June 2010 Microsoft Security Bulletins on Cisco Contact Center and Self Service Products
Impact Assessments for Cisco Contact Center and Self Service Products evaluate Microsoft security bulletins and associated software updates for potential impact to Cisco Contact Center products. For each respective Microsoft Security Bulletin, a Microsoft update is assigned one of three categorical ratings: Impacting, Deferred, or Not Applicable.

Cisco IP Telephony Operating System, SQL Server, Security Updates
This document contains information on software updates for tracking Cisco-supported operating system, SQL Server, and security files that are available for web download. These updates support all versions of Cisco Unified CallManager, Cisco Conference Connection, Cisco Personal Assistant, Cisco IP Interactive Voice Response, and Cisco IP Call Center Express, Cisco Emergency Responder, Cisco Customer Voice Portal, and Cisco MeetingPlace. This document does not support Cisco Unity or servers where Cisco Unity is installed.

Recommended Microsoft Hot Fixes for Cisco Media Experience 3000
These documents evaluate the monthly Microsoft security bulletins for applicability to the Cisco Media Experience Engine (MXE) 3000 product line. The bulletins clarify which Microsoft Security Bulletins should be applied to affected hardware and software levels of Cisco MXE 3000 products.

Related Links

Cisco ACE 4710 Application Control Engine
Cisco ASA 5500 Adaptive Security Appliances
Cisco Firewall Solutions
Cisco Intrusion Prevention System
Cisco IOS IPS
Cisco IOS NetFlow
Cisco IronPort Email and Web Security Appliances
Cisco NAC Appliance
Cisco Services for IPS
Cisco Security Agent
Cisco Security IntelliShield Alert Manager Service
Cisco Security Monitoring, Analysis, and Response System

Cisco IPS 6.x Signature Downloads
Cisco IPS Signature Search Page
Cisco Applied Mitigation Bulletins


Return to Cisco Security Intelligence Operations