Microsoft has recently provided some details about the patches that are scheduled to be released on Tuesday, November 8. There are four patches scheduled to be released. One of the patches (bulletin#1) is designated as CRITICAL and apply to the following workstation operating systems: Windows Vista, Windows 7 and the following Server operating systems: Windows server 2008 and Windows server 2008R2.
The remaining patches have the following classifications:
- IMPORTANT (for Vista), MODERATE (for Server 2008) or LOW for Win7 or Server 2008R2.
- IMPORTANT for all workstation and server OSs
- MODERATE (only applicable for Server 2008 and Server 2008R2)
Additional details will be available at – http://technet.microsoft.com/en-us/security/bulletin/ms11-nov
Update: November 8
Microsoft has provided the following additional details about the patches issued for November.
Both Microsoft and SANs have provided additional details on the patches that are being released on November 8. In contrast to previous months when older operating systems had higher exposure to vulnerability exploits, the month of November 2011 is the opposite. A vulnerability identified as critical for Vista, Windows 7 and Server 2008/2008R2 is not applicable for Windows XP or Server 2003.
Additionally, while Microsoft has identified only one patch (http://technet.microsoft.com/en-us/security/bulletin/MS11-083 ) as critical, the SANs resource (http://isc.sans.edu/diary/Microsoft+November+2011+Black+Tuesday+Overview/11971 ) has classified the MS11-086 Active Directory patch as being critical – http://technet.microsoft.com/en-us/security/bulletin/ms11-086
The MS11-083 patch addresses vulnerabilities in TCP/IP for Vista/Windows 7 and Server 2008/2008R2 operating systems. Currently, no publically known exploits have been identified for any of the vulnerabilities Microsoft is addressing for November 2011. For the MS11-083 patch, Microsoft has selected an exploitability index of 2 which corresponds to it being unlikely that reliable exploit code is likely to appear in the next 30 days. Specifics with regard to exploiting the vulnerability addressed with Microsoft patch MS11-083
For the November 2011 Microsoft patches, the AgriLife ISO recommendation is as follows:
- Apply the patches to applicable workstation operating systems as soon as possible (following appropriate testing).
- Apply the patches to applicable server operating systems as soon as possible (following appropriate testing).