微软10月份安全公告发布

• 安全
• 月份
• Allow
• in
• Could
• Windows
• V

微软周二更新了10月份的安全公告，其中4个是严重等级的安全补丁，将修复Windows活动目录、IE浏览器、Excel和微软主机集成服务器等产品中的严重安全漏洞。主机集成服务器是把Windows计算机与IBM大型计算机集成在一起的产品。

严重的活动目录安全漏洞影响到Windows 2000 Server操作系统，但是，不影响其它版本的Windows操作系统。Excel安全漏洞影响到Windows和Mac OS X版本的这个产品。微软还发布了6个比严重等级低一级的“重要”等级的安全补丁。这些补丁将修复Windows中的安全漏洞。还有1个“中等”等级的补丁，修复Office软件中的安全漏洞。所有这些补丁现在已经可以下载到。

严重:

-KB957280: Vulnerability in Active Directory Could Allow Remote Code Execution

-KB956390: Cumulative Security Update for Internet Explorer

-KB956695: Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution

-KB956416: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution

重要:

-KB956803: Vulnerability in the Microsoft Ancillary Function Driver Could Allow Elevation of Privilege

-KB954211: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege

-KB953155: Vulnerability in Windows Internet Printing Service Could Allow Remote Code Execution

-KB957095: Vulnerability in SMB Could Allow Remote Code Execution

-KB956841: Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege

-KB951071: Vulnerability in Message Queuing Could Allow Remote Code Execution

中等:

-KB957699: Vulnerability in Microsoft Office Could Allow Information Disclosure