Search My Blog

Thursday, January 13, 2011

Microsoft Security Bulletin MS11-002 - Critical: Vulnerabilities in Microsoft Data Access Components Could Allow Remote Code Execution (2451910)

Microsoft Security Bulletin MS11-002 - Critical

Vulnerabilities in Microsoft Data Access Components Could Allow Remote Code Execution (2451910)

Published: January 11, 2011

Version: 1.0

General Information

Executive Summary

This security update resolves two privately reported vulnerabilities in Microsoft Data Access Components. The vulnerabilities could allow remote code execution if a user views a specially crafted Web page. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

This security update is rated Critical for all supported editions of Windows XP, Windows Vista, and Windows 7, and Important for all supported editions of Windows Server 2003, Windows Server 2008, and Windows Server 2008 R2. For more information, see the subsection, Affected and Non-Affected Software, in this section.

Read more...
http://www.microsoft.com/technet/security/bulletin/MS11-002.mspx

Don

No comments: