Microsoft has released their Advanced Notification for the upcoming July 2012 edition of Patch Tuesday. During this round, Microsoft will be releasing nine bulletins addressing 16 vulnerabilities.
I am making the assumption that Microsoft will indeed be patching a vulnerability that has had limited zero-day attacks. During the June 2012 Patch Tuesday, Microsoft released a Security Advisory (KB2719615) announcing a vulnerability in MSXML that had limited attacks against. On Patch Tuesday, pay particular attention to see if this is the case of Microsoft releasing a patch for a Zero-Day vulnerability.
In addition, every computer on your network will face some type of patching this month. One of the bulletins has quite a few products associated to it.
Security Bulletin Breakdown:
- 3 bulletins are rated as Critical
- 6 bulletins are rated as Important
- 5 bulletins addressing vulnerabilities that could lead to Remote Code Execution
- 3 bulletins addressing vulnerabilities that could lead to Elevation of Privilege
- 1 bulletin addressing vulnerabilities that could lead to Information Disclosure
- All supported versions of Microsoft Operating Systems
- Microsoft Internet Explorer 9
- All supported versions of Microsoft Office products (2003, 2007, 2010)
- Microsoft InfoPath 2007, 2010
- Microsoft SharePoint Server 2007, 2010
- Microsoft Groove Server 2010
- Microsoft SharePoint Services 3.0
- Microsoft SharePoint Foundation 2010
- Microsoft Office Web Apps 2010
- Microsoft Visual Basic for Applications
- Microsoft Visual Basic for Applications SDK
I will be going over the July Patch Tuesday in detail in addition to any other non-Microsoft releases since the last Patch Tuesday in our Monthly Patch Tuesday webinar. In addition, I will be spending some time discussing the Flame virus situation. This webinar is scheduled for next Wednesday, July 11th at 11:00am CT. You can register for this webinar here.
– Jason Miller