Texas A&M AgriLife IT Security
Texas A&M AgriLife IT SecurityLatest IT news & tips to keep your computer safe

April Microsoft patches – to be released on April 9 – six total- four are critical

by

Microsoft has just provided advance notice of the patches that are scheduled to be released on Tuesday, April 9.  The notice can be viewed at http://technet.microsoft.com/security/bulletin/ms12-apr

As of Thursday, April 5, following information has been made available:  a total of six patches are scheduled to be released; four of which will be designated as CRITICAL and two will be designated as IMPORTANT.

The four CRITICAL patches are associated with vulnerabilities in the following products:

Bulletin  #1

  • Internet Explorer (for all current Windows Desktop and Server operating systems);

Bulletin #2

  • All currently supported Windows Desktop (XP, Vista and Win7) and Server (Server 2003, Server 2008 and Server 2008R2) Operating Systems;

Bulletin #3

  • All currently supported Windows Desktop (XP, Vista and Win7) and Server (Server 2003, Server 2008 and Server 2008R2) Operating Systems;

Bulletin #4

  • Microsoft Office (2003sp3, 2007sp2 and sp3, 2010 base and sp1),
  • Office Web Components (2003sp3)
  • SQL Server (2000sp4, 2005 all versions, 2008 all versions and 2008r2 all versions)
  • BizTalk Server (2002sp1)
  • Commerce server (2002sp4, 2007sp2, 2009 and 2009R2)
  • Visual FoxPro (versions 8.0sp1 and 9.0sp2)
  •  Visual Basic (6.0 Runtime)

The patches designated as IMPORTANT apply to the following products:

Bulletin #5

  • Forefront Unified Access Gateway – 2010sp1 and 2010sp1 update1;

Bulletin #6

  • Office 2007sp2
  • Microsoft Works 9
  • Microsoft Works 6-9 (file converter)

 

As the scope of the April Microsoft patches just about spans the complete line of Microsoft products, it is almost certain that at least one of the CRITICAL patches will include an ISO recommendation to patch as soon as possible (for workstations at a minimum).  Additional information will be published as it is made available on Tuesday, April 10.

Update: April 10, 2012

Microsoft has provided additional details about the April Operating System and Application software patches released on April 10.  Due to the nature of the patches, and the fact that limited targeted attacks have been identified that exploit at least one of the vulnerabilities being patched, the AgriLife ISO recommendation is as follows: apply the patches for both workstations and servers as soon as possible.

Details of April Microsoft patches:

Critical Severity patches – (where applicable, server operating systems that have a different severity designation are identified)

MS12-023http://technet.microsoft.com/en-us/security/bulletin/ms12-023

Workstation operating systems – Windows XP, Vista, Windows 7
Server operating systems – Server 2003, Server 2008 and Server 2008R2 (moderate severity – Important severity by http://isc.sans.edu/diary/Microsoft+April+2012+Black+Tuesday+Update+-+Overview/12949)
Software affected – Internet Explorer versions  6-9
Remote Code Execution vulnerability
Exploit code likely in the next 30 days
Vulnerability not publicly disclosed prior to April 10.

MS12-024http://technet.microsoft.com/en-us/security/bulletin/ms12-024

Workstation operating systems – Windows XP, Vista, Windows 7
Server operating systems – Server 2003, Server 2008 and Server 2008R2
Software affected – Windows
Remote Code Execution vulnerability
Exploit code likely in the next 30 days
Vulnerability not publicly disclosed prior to April 10.

MS12-025http://technet.microsoft.com/en-us/security/bulletin/ms12-025

Workstation operating systems – Windows XP, Vista, Windows 7
Server operating systems – Server 2003, Server 2008 and Server 2008R2
Software affected – Windows and .NET framework
Remote Code Execution vulnerability
Exploit code likely in the next 30 days
Vulnerability not publicly disclosed prior to April 10.

MS12-027http://technet.microsoft.com/en-us/security/bulletin/ms12-027

Workstation operating systems – Window XP, Vista and Windows 7
Server operating systems – Server 2003, Server 2008 and Server 2008R2
Server software – Office 2007, Office 2010 (32 bit only), Office 2003 web components, SQL server 2000, SQL server 2005 (all versions), SQL server 2008 (all versions), BizTalk Server, Visual FoxPro 8.0/9.0, and Visual Basic 6.0 Runtime
Remote Code Execution vulnerability in Windows Common Control Module – (MSComCtl)
Exploit code likely in the next 30 days
Vulnerability not publicly disclosed prior to April 10.

Important Severity patches

MS12-026http://technet.microsoft.com/en-us/security/bulletin/ms12-026

Workstation operating systems – N/A
Server operating systems – Server 2003, Server 2008 and Server 2008R2
Software affected – Forefront Unified Access Gateway
Exploit code likely in the next 30 days
Vulnerability not publicly disclosed prior to April 10.

MS12-028http://technet.microsoft.com/en-us/security/bulletin/ms12-028

Workstation operating systems – Window XP, Vista and Windows 7
Server operating systems – Server 2003, Server 2008 and Server 2008R2
Software affected – Microsoft Office and Works
Remote Code Execution vulnerability
Exploit code likely in the next 30 days
Vulnerability not publicly disclosed prior to April 10.