Microsoft Patch Tuesday Roundup - August 2011
A few interesting notes on this month's Microsoft Patch Tuesday release:
- Windows DNS servers are vulnerable to remote exploitation. However, they must implement a specific configuration.
- We've released a new plugin to detect the Remote Desktop Web Access service on Windows.
- Another five vulnerabilities in Internet Explorer have been fixed. I believe this to be one of the more critical things to patch. While Microsoft claims there are no known exploits, no one can be certain.
To further aid in your efforts to evaluate the exposures presented by the vulnerabilities addressed by Microsoft’s Patch Tuesday, Tenable's Research team has published Nessus plugins for each of the security bulletins issued this month:
- MS11-058 - Nessus Plugin ID 55788 (Credentialed Check)
- MS11-059 - Nessus Plugin ID 55789 (Credentialed Check)
- MS11-060 - Nessus Plugin ID 55790 (Credentialed Check)
- MS11-061 - Nessus Plugin ID 55791 (Credentialed Check)
- MS11-062 - Nessus Plugin ID 55792 (Credentialed Check)
- MS11-063 - Nessus Plugin ID 55793 (Credentialed Check)
- MS11-064 - Nessus Plugin ID 55794 (Credentialed Check)
- MS11-065 - Nessus Plugin ID 55795 (Credentialed Check)
- MS11-066 - Nessus Plugin ID 55796 (Credentialed Check)
- MS11-067 - Nessus Plugin ID 55797 (Credentialed Check)
- MS11-068 - Nessus Plugin ID 55798 (Credentialed Check)
- MS11-069 - Nessus Plugin ID 55799 (Credentialed Check)
Resources
Related Articles
Managing OT and IT Risk: What Cybersecurity Leaders Need to Know
October 7, 2024Security leaders face the challenge of managing a vast, interconnected attack surface, where traditional approaches to managing cyber risk are no longer sufficient. Modern threats exploit vulnerabilities across domains, requiring a more holistic approach to avoid operational disruption, safety risks and financial losses.
Cybersecurity Snapshot: Many Employees Overshare Work Info with AI Tools, Report Finds, as ‘Cybersecurity Awareness Month’ Kicks Off
October 4, 2024Check out the best practices cyber agencies are promoting during Cybersecurity Awareness Month, as a report warns that staffers are feeding confidential info to AI tools. Meanwhile, a study highlights how business decisions can derail OT security. Plus, get the latest on Active Directory security, CISO salary trends and ransomware attacks!
How to Unlock Advanced IoT Visibility for Cyber-Physical Systems
October 1, 2024As the number of IoT devices deployed globally continues to rise, cyber-physical systems and business operations are exposed to greater risk. Improving asset visibility, monitoring and risk management are critical steps to preventing breaches.
