May 11, 2010Microsoft published its monthly security bulletin release on May 11, 2010. Two bulletins were released that addressed two individual vulnerabilities. The bulletins address vulnerabilities in Microsoft Windows Mail and Outlook Express products, as well as Microsoft Visual Basic for Applications. The vulnerabilities could allow attackers to execute arbitrary code on a system. |
|
| |||||||||||||||
|
|||||||||||||||||
| Microsoft Security Bulletin | Cisco IntelliShield Alert | CVE ID  |
Cisco Mitigations | CVSS Base Score |
|---|---|---|---|---|
Microsoft Security Bulletin MS10-030 Vulnerability in Outlook Express and Windows Mail Could Allow Remote Code Execution |
Microsoft Outlook Express and Windows Live Mail Integer Overflow Arbitrary Code Execution Vulnerability | CVE-2010-0816 |
Cisco IPS Signature 25959-0 Cisco Security MARS Cisco ASA/FWSM Cisco IOS Netflow Cisco IOS tACL |
9.3 |
Microsoft Security Bulletin MS10-031 Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution |
Microsoft Visual Basic Stack Memory Corruption Arbitrary Code Execution Vulnerability | CVE-2010-0815 |
Cisco IPS Signature 25919-0 Cisco Security MARS Cisco ASA/FWSM Cisco IOS Netflow Cisco IOS tACL |
9.3 |
Cisco Security Intelligence Operations
Cisco Applied Mitigation Bulletins provide identification and mitigation techniques that administrators can deploy on Cisco network devices. Cisco IOS access control lists, Cisco Intrusion Prevention System (IPS) signatures, Cisco IOS NetFlow, Cisco Security Monitoring, Analysis, and Response System Incidents, and firewall access control lists are discussed in this bulletin.
Cisco Applied Mitigation Bulletin: Microsoft Security Bulletin Release for May 11, 2010
Impact on Cisco Products
Impact Assessment of May 2010 Microsoft Security Bulletins on Cisco Contact Center and Self Service Products
Impact Assessments for Cisco Contact Center and Self Service Products evaluate Microsoft security bulletins and associated software updates for potential impact to Cisco Contact Center products. For each respective Microsoft Security Bulletin, a Microsoft update is assigned one of three categorical ratings: Impacting, Deferred, or Not Applicable.
Cisco IP Telephony Operating System, SQL Server, Security Updates
This document contains information on software updates for tracking Cisco-supported operating system, SQL Server, and security files that are available for web download. These updates support all versions of Cisco Unified CallManager, Cisco Conference Connection, Cisco Personal Assistant, Cisco IP Interactive Voice Response, and Cisco IP Call Center Express, Cisco Emergency Responder, Cisco Customer Voice Portal, and Cisco MeetingPlace. This document does not support Cisco Unity or servers where Cisco Unity is installed.
Recommended Microsoft Hot Fixes for Cisco Media Experience 3000
These documents evaluate the monthly Microsoft security bulletins for applicability to the Cisco Media Experience Engine (MXE) 3000 product line. The bulletins clarify which Microsoft Security Bulletins should be applied to affected hardware and software levels of Cisco MXE 3000 products.
Related Links
Cisco ACE 4710 Application Control Engine
Cisco ASA 5500 Adaptive Security Appliances
Cisco Firewall Solutions
Cisco Intrusion Prevention System
Cisco IOS IPS
Cisco IOS NetFlow
Cisco IronPort Email and Web Security Appliances
Cisco NAC Appliance
Cisco Services for IPS
Cisco Security Agent
Cisco Security IntelliShield Alert Manager Service
Cisco Security Monitoring, Analysis, and Response System
Cisco IPS 6.x Signature Downloads
Cisco IPS Signature Search Page
Cisco Applied Mitigation Bulletins
