Security update roundup for February

by Andy on February 23rd, 2012 in Security Tips.

In Microsoft's Security Bulletin Summary for February 2012 a number of updates have been released including four "critical" and five "important" severity updates.

The patches address remote code execution, elevation of privilege and denial of service vulnerabilities. Importantly, an update has been released to patch the critical vulnerabilities in Windows Kernel-Mode Drivers. Microsoft report that "The more severe of these vulnerabilities could allow remote code execution if a user visits a website containing specially crafted content or if a specially crafted application is run locally."

Users are strongly advised to treat these updates as high priority.

Full details here.

Security updates are available here.

In other updates, Adobe have published a security patch  to address critical vulnerabilities in Flash Player 11.1.102.55 and earlier.Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition, take control of the affected system, or perform a cross-site scripting attack.

Adobe recommends users of Adobe Flash Player 11.1.102.55 and earlier versions upgrade to the newest version update to Adobe Flash Player 11.1.115.6  available here.

The latest version of Firefox has also been published, fixing a number of security issues.

Firefox Firefox 10.0.2 includes fixes listed here.