Original release date: April 13, 2010
Last revised: --
Source: US-CERT

Systems Affected

• Microsoft Windows
• Microsoft Office
• Microsoft Exchange

Overview

Microsoft has released updates to address vulnerabilities in Microsoft Windows, Microsoft Office, and Microsoft Exchange.

I. Description

Microsoft has released security bulletins for multiple vulnerabilities in Microsoft Windows, Microsoft Windows Media Server on Windows 2000 Server, Microsoft Office Publisher, Microsoft Office Visio, and Microsoft Exchange. These bulletins are described in the Microsoft Security Bulletin Summary for April 2010.

II. Impact

A remote, unauthenticated attacker could execute arbitrary code, cause a vulnerable application to crash, or spoof IPv4 addresses.

III. Solution

Apply updates from Microsoft

Microsoft has provided updates for these vulnerabilities in the Microsoft Security Bulletin Summary for April 2010. The security bulletin describes any known issues related to the updates. Administrators are encouraged to note these issues and test for any potentially adverse effects. Administrators should consider using an automated update distribution system such as Windows Server Update Services (WSUS).

IV. References

• Microsoft Security Bulletin Summary for April 2010 - <http://www.microsoft.com/technet/security/bulletin/ms10-apr.mspx>

Feedback can be directed to US-CERT.

Produced 2010 by US-CERT, a government organization. Terms of use

April 13, 2010: Initial release