Patch Tuesday – May 11, 2010

Two security bulletins were released by Microsoft on Tuesday, May 11, 2010. Both bulletins are classified as Critical (MS10-030, and MS10-031) according to the May 2010 Bulletin Summary.

Critical Bulletins

MS10-030: Vulnerability in Outlook Express and Windows Mail Could Allow Remote Code Execution (978542)

Affected Software

  • Outlook Express 5.5 SP2
  • Outlook Express 6.0
    • Windows XP SP2 – Download Update
      • Supersedes MS08-048 and MS09-037
    • Windows XP SP3 – Download Update
      • Supersedes MS08-048 and MS09-037
    • Windows XP SP2 Professional x64 Edition – Download Update
      • Supersedes MS08-048 and MS09-037
    • Windows Server 2003 SP2 – Download Update
      • Supersedes MS08-048 and MS09-037
    • Windows Server 2003 SP2 x64 Edition – Download Update
      • Supersedes MS08-048 and MS09-037
    • Windows Server 2003 SP2 for Itanium-based Systems – Download Update
      • Supersedes MS08-048 and MS09-037
  • Outlook Express 6.0 SP1
  • Windows Live Mail
  • Windows Mail

MS10-031: Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution (978213)

Affected Software

Important Reminder

Please keep your computer up to date with Critical and Important updates by visiting Microsoft Update. If you experience any problems with Microsoft Security updates then please call Microsoft support for help. There will be no charge for support on Security Updates.

Microsoft has set up newsgroups for self-support. If you need help for Security updates or any other updates that is issued by Microsoft then please visit the Windows Update newsgroup at using your newsreader news://msnews.microsoft.com/microsoft.public.windowsupdate.

Version 1.1
Edited: May 23, 2010

Advertisements

Patch Tuesday – April 13, 2010

Eleven security bulletins were released by Microsoft on Tuesday, April 13, 2010. Five bulletins are classified as Critical (MS10-019, MS10-020, MS10-025, MS10-026 and MS10-027), five bulletins are classified as Important (MS10-021, MS10-022, MS10-023, MS10-024, and MS10-028), and one bulletin is classified as Moderate (MS10-029) according to the April 2010 Bulletin Summary.

Critical Bulletins

MS10-019: Vulnerabilities in Windows Could Allow Remote Code Execution (981210)

Affected Software

MS10-020: Vulnerabilities in SMB Client Could Allow Remote Code Execution (980232)

Affected Software

MS10-025: Vulnerability in Microsoft Windows Media Services Could Allow Remote Code Execution (980858)

Affected Software

MS10-026: Vulnerability in Microsoft MPEG Layer-3 Codecs Could Allow Remote Code Execution (977816)

Affected Software

MS10-027: Vulnerability in Windows Media Player Could Allow Remote Code Execution (979402)

Affected Software

Important Bulletins

MS10-021: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (979683)

Affected Software

MS10-022: Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (981169)

Affected Software

MS10-023: Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (981160)

Affected Software

MS10-024: Vulnerabilities in Microsoft Exchange and Windows SMTP Service Could Allow Denial of Service (981832)

Affected Software

MS10-028: Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (980094)

Affected Software

Moderate Bulletins

MS10-029: Vulnerability in Windows ISATAP Component Could Allow Spoofing (978338)

Affected Software

Important Reminder

Please keep your computer up to date with Critical and Important updates by visiting Microsoft Update. If you experience any problems with Microsoft Security updates then please call Microsoft support for help. There will be no charge for support on Security Updates.

Microsoft has set up newsgroups for self-support. If you need help for Security updates or any other updates that is issued by Microsoft then please visit the Windows Update newsgroup at using your newsreader news://msnews.microsoft.com/microsoft.public.windowsupdate.

Out-of-Band Security Update – March 30, 2010

One ‘Out-Of-Band” security bulletins was released by Microsoft on Tuesday, March 30, 2010. The update is classified as Critical (MS10-018) according to the March 2010 Bulletin Summary.

About Out-of-Band Updates

Out-of-Band or Out-of Cycle updates are security updates that are not released on the second Tuesday of the month, commonly known as Patch Tuesday. Microsoft deems the necessity of the out-of band security update due to the wide-spread of the exploit that affects Microsoft products and its customers. Typically security updates are released on the second Tuesday of the month so IT administrators can plan for these days to test and deploy security patches.

Critical Bulletins

MS10-018: Cumulative Security Update for Internet Explorer (980182)

Affected Software

  • Internet Explorer 5.01
  • Internet Explorer 6 SP1
  • Internet Explorer 6
  • Internet Explorer 7
    • Windows XP SP2 – Download Update
      • Supersedes MS10-002
    • Windows XP SP3 – Download Update
      • Supersedes MS10-002
    • Windows XP SP2 Professional x64 Edition – Download Update
      • Supersedes MS10-002
    • Windows Server 2003 SP2 – Download Update
      • Supersedes MS10-002
    • Windows Server 2003 SP2 x64 Edition – Download Update
      • Supersedes MS10-002
    • Windows Server 2003 SP2 for Itanium-based Systems – Download Update
      • Supersedes MS10-002
    • Windows Vista, 32-bit Editions – Download Update
      • Supersedes MS10-002
    • Windows Vista SP1, 32-bit Editions – Download Update
      • Supersedes MS10-002
    • Windows Vista SP2, 32-bit Editions – Download Update
      • Supersedes MS10-002
    • Windows Vista, 64-bit Editions – Download Update
      • Supersedes MS10-002
    • Windows Vista SP1, 64-bit Editions – Download Update
      • Supersedes MS10-00
    • Windows Vista SP2, 64-bit Editions – Download Update
      • Supersedes MS10-002
    • Windows Server 2008, 32-bit Editions – Download Update
      • Supersedes MS10-002
    • Windows Server 2008 SP2, 32-bit Editions – Download Update
      • Supersedes MS10-002
    • Windows Server 2008, 64-bit Editions – Download Update
      • Supersedes MS10-002
    • Windows Server 2008 SP2, 64-bit Editions – Download Update
      • Supersedes MS10-002
    • Windows Server 2008 for Itanium-based Systems – Download Update
      • Supersedes MS10-002
    • Windows Server 2008 SP2 for Itanium-based Systems – Download Update
      • Supersedes MS10-002
  • Internet Explorer 8

Important Reminder

Please keep your computer up to date with Critical and Important updates by visiting Microsoft Update. If you experience any problems with Microsoft Security updates then please call Microsoft support for help. There will be no charge for support on Security Updates.

Microsoft has set up newsgroups for self-support. If you need help for Security updates or any other updates that is issued by Microsoft then please visit the Windows Update newsgroup at using your newsreader news://msnews.microsoft.com/microsoft.public.windowsupdate.

Patch Tuesday – March 9, 2010

Two security bulletins were released by Microsoft on Tuesday, March 9, 2010. Both bulletins are classified as Important (MS10-016. and MS10-017) according to the March 2010 Bulletin Summary.

Important Bulletins

MS10-016: Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (975561)

Affected Software

MS10-017: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150)

Affected Software

  • Office XP SP3
  • Office 2003 SP3
  • 2007 Office System SP1
  • 2007 Office System SP2
  • Office 2004 for Mac – Download Update
  • Office 2008 for Mac – Download Update
  • Open XML File Format Converter for Mac – Download Update
  • Excel Viewer SP1 – Download Update
    • Supersedes MS09-067
  • Excel Viewer SP2 – Download Update
    • Supersedes MS09-067
  • Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 – Download Update
    • Supersedes MS09-067
  • Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 – Download Update
    • Supersedes MS09-067
  • Office SharePoint Server 2007 SP1, 32-bit Edition – Download Update
    • Supersedes MS09-021
  • Office SharePoint Server 2007 SP2, 32-bit Edition – Download Update
    • Supersedes MS09-021
  • Office SharePoint Server 2007 SP1, 64-bit Edition – Download Update
    • Supersedes MS09-021
  • Office SharePoint Server 2007 SP2, 64-bit Edition – Download Update
    • Supersedes MS09-021

Important Reminder

Please keep your computer up to date with Critical and Important updates by visiting Microsoft Update. If you experience any problems with Microsoft Security updates then please call Microsoft support for help. There will be no charge for support on Security Updates.

Microsoft has set up newsgroups for self-support. If you need help for Security updates or any other updates that is issued by Microsoft then please visit the Windows Update newsgroup at using your newsreader news://msnews.microsoft.com/microsoft.public.windowsupdate.

Patch Tuesday – February 9, 2010

Thirteen security bulletins were released by Microsoft on Tuesday, February 9, 2010. Five bulletins are classified as Critical (MS10-006. MS10-007, MS10-008, MS10-009, and MS10-013), seven bulletins are classified as Important (MS10-003, MS10-004, MS10-010, MS10-011, MS10-012, MS10-014, and MS10-015), and one bulletin is classified as Moderate (MS10-005) according to the February 2010 Bulletin Summary.

Critical Bulletins

MS10-006: Vulnerabilities in SMB Client Could Allow Remote Code Execution (978251)

Affected Software

  • Windows 2000 SP4 – Download Update
    • Superseded by MS10-020
    • Supersedes MS06-030
  • Windows XP SP2 – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows XP SP3 – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows XP SP2 Professional x64 Edition – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Server 2003 SP2 – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Server 2003 SP2 x64 Edition – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Server 2003 SP2 for Itanium-based Systems – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Vista, 32-bit Editions – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Vista SP1, 32-bit Editions – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Vista SP2, 32-bit Editions – Download Update
    • Superseded by MS10-020
  • Windows Vista, 64-bit Editions – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Vista SP1, 64-bit Editions – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Vista SP2, 64-bit Editions – Download Update
    • Superseded by MS10-020
  • Windows Server 2008, 32-bit Editions – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Server 2008 SP2, 32-bit Editions – Download Update
    • Superseded by MS10-020
  • Windows Server 2008, 64-bit Editions – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Server 2008 SP2, 64-bit Editions – Download Update
    • Superseded by MS10-020 
  • Windows Server 2008 for Itanium-based Systems – Download Update
    • Superseded by MS10-020
    • Supersedes MS08-068
  • Windows Server 2008 SP2 for Itanium-based Systems – Download Update
    • Superseded by MS10-020
  • Windows 7, 32-bit Editions – Download Update
    • Superseded by MS10-020
  • Windows 7, 64-bit Editions – Download Update
    • Superseded by MS10-020
  • Windows Server 2008 R2, 64-bit Editions – Download Update
    • Superseded by MS10-020
  • Windows Server 2008 R2 for Itanium-based Systems – Download Update
    • Superseded by MS10-020

MS10-007: Vulnerability in Windows Shell Handler Could Allow Remote Code Execution (975713)

Affected Software

MS10-008: Cumulative Security Update of ActiveX Kill Bits (978262)

Affected Software

MS10-009: Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (974145)

Affected Software

MS10-013: Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (977935)

Affected Software

Important Bulletins

MS10-003: Vulnerability in Microsoft Office (MSO) Could Allow Remote Code Execution (978214)

Affected Software

MS10-004: Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (975416)

Affected Software

MS10-010: Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service (977894)

Affected Software

MS10-011: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (978037)

Affected Software

MS10-012: Vulnerabilities in SMB Server Could Allow Remote Code Execution (971468)

Affected Software

MS10-014: Vulnerability in Kerberos Could Allow Denial of Service (977290)

Affected Software

MS10-015: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165)

Affected Software

  • Windows 2000 SP4 – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows XP SP2 – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows XP SP3 – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows XP SP2 Professional x64 Edition – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Server 2003 SP2 – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Server 2003 SP2 x64 Edition – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Server 2003 SP2 for Itanium-based Systems – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Vista, 32-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Vista SP1, 32-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Vista SP2, 32-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Vista, 64-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Vista SP1, 64-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Vista SP2, 64-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Server 2008, 32-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Server 2008 SP2, 32-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Server 2008, 64-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Server 2008 SP2, 64-bit Editions – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Server 2008 for Itanium-based Systems – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows Server 2008 SP2 for Itanium-based Systems – Download Update
    • Superseded by MS10-021
    • Supersedes MS09-058
  • Windows 7, 32-bit Editions – Download Update
    • Superseded by MS10-021

Moderate Bulletins

MS10-005: Vulnerability in Microsoft Paint Could Allow Remote Code Execution (978706)

Affected Software

Important Reminder

Please keep your computer up to date with Critical and Important updates by visiting Microsoft Update. If you experience any problems with Microsoft Security updates then please call Microsoft support for help. There will be no charge for support on Security Updates.

Microsoft has set up newsgroups for self-support. If you need help for Security updates or any other updates that is issued by Microsoft then please visit the Windows Update newsgroup at using your newsreader news://msnews.microsoft.com/microsoft.public.windowsupdate.

Version 1.2
Edited: April 14, 2010

Out-of-Band Security Update – January 21, 2010

One ‘Out-Of-Band” security bulletins was released by Microsoft on Tuesday, January 21, 2010. The update is classified as Critical (MS10-002) according to the January 2010 Bulletin Summary.

About Out-of-Band Updates

Out-of-Band or Out-of Cycle updates are security updates that are not released on the second Tuesday of the month, commonly known as Patch Tuesday. Microsoft deems the necessity of the out-of band security update due to the wide-spread of the exploit that affects Microsoft products and its customers. Typically security updates are released on the second Tuesday of the month so IT administrators can plan for these days to test and deploy security patches.

Critical Bulletins

MS10-002: Cumulative Security Update for Internet Explorer (978207)

Affected Software

  • Internet Explorer 5.01
    • Windows 2000 SP4 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
  • Internet Explorer 6 SP1
    • Windows 2000 SP4 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
  • Internet Explorer 6
    • Windows XP SP2 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows XP SP3 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows XP SP2 Professional x64 Edition – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2003 SP2 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2003 SP2 x64 Edition – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2003 SP2 for Itanium-based Systems – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
  • Internet Explorer 7
    • Windows XP SP2 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows XP SP3 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows XP SP2 Professional x64 Edition – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2003 SP2 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    •  Windows Server 2003 SP2 x64 Edition – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2003 SP2 for Itanium-based Systems – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista SP1, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista SP2, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista SP1, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista SP2, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008 SP2, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008 SP2, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008 for Itanium-based Systems – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008 SP2 for Itanium-based Systems – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
  • Internet Explorer 8
    • Windows XP SP2 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows XP SP3 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows XP SP2 Professional x64 Edition – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2003 SP2 – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2003 SP2 x64 Edition – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista SP1, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista SP2, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista SP1, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Vista SP2, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008 SP2, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008 SP2, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows 7, 32-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows 7, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008 R2, 64-bit Editions – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072
    • Windows Server 2008 R2 for Itanium-based Systems – Download Update
      • Superseded by MS10-018
      • Supersedes MS09-072

Important Reminder

Please keep your computer up to date with Critical and Important updates by visiting Microsoft Update. If you experience any problems with Microsoft Security updates then please call Microsoft support for help. There will be no charge for support on Security Updates.

Microsoft has set up newsgroups for self-support. If you need help for Security updates or any other updates that is issued by Microsoft then please visit the Windows Update newsgroup at using your newsreader news://msnews.microsoft.com/microsoft.public.windowsupdate.

Version 1.1
Edited: March 30, 2010

Patch Tuesday – January 12, 2010

One security bulletins was released by Microsoft on Tuesday, January 12, 2010. The bulletins is classified as Critical (MS10-001) according to the January 2010 Bulletin Summary.

Critical Bulletins

MS10-001: Vulnerability in the Embedded OpenType Font Engine Could Allow Remote Code Execution (972270)

Affected Software

Important Reminder

Please keep your computer up to date with Critical and Important updates by visiting Microsoft Update. If you experience any problems with Microsoft Security updates then please call Microsoft support for help. There will be no charge for support on Security Updates.

Microsoft has set up newsgroups for self-support. If you need help for Security updates or any other updates that is issued by Microsoft then please visit the Windows Update newsgroup at using your newsreader news://msnews.microsoft.com/microsoft.public.windowsupdate.