Wednesday, June 9, 2010

Home » » Microsoft Patch Tuesday June 2010

Microsoft Patch Tuesday June 2010

By  7:13:00 AM  No comments
ไมโครซอฟท์ออก Patch Tuesday จำนวน 10 ตัวเพื่อแก้ 34 ปัญหาความปลอดภัย
บทความโดย: Windows Administrator Blog

แอดมินที่รับผิดชอบการอัพเดทระบบวินโดวส์ต้องเจองานหนักอีกครั้ง เมื่อไมโครซอฟท์ (Microsoft) ทำการออกแพตซ์ (Patch Tuesday) ของเดือนมิถุนายนจำนวน 10 ตัว สำหรับแก้ 34 ปัญหาช่องโหว่ความปลอดภัยของ Windows, Internet Explorer และ Microsoft Office ตามรายละเอียดด้านล่างครับ

Executive Summaries
วันอังคารที่ 8 มิถุนายน 2553 (ตรงกับวันพุธที่ 9 มิถุนายน 2553 ตามเวลาในประเทศไทย) ไมโครซอฟท์ได้ออก "Microsoft Security Update for June 2010" หรือที่เรียกกันในเหล่าแอดมินว่า "Patch Tuesday" จำนวน 10 อัพเดท เป็นแพตซ์ของระบบ Windows, Internet Explorer และ Microsoft Office รายละเอียดดังต่อไปนี้
• มีแพตซ์ 6 ตัวที่มีผลกับระบบ Windows โดยมีแพตซ์ที่มีความร้ายแรงระดับวิกฤติ (Critical) จำนวน 2 ตัว และ โดยมีแพตซ์ที่มีความร้ายแรงสูง (Important) จำนวน 4 ตัว
• มีแพตซ์ 2 ตัวที่มีผลกับระบบ Microsoft Office โดยแพตซ์ทั้ง 2 ตัว มีความร้ายแรงสูง (Important)
• มีแพตซ์ 1 ตัวที่มีผลกับทั้งระบบ Windows และ Microsoft Office โดยเป็นแพตซ์ที่มีความร้ายแรงสูง (Important)
• มีแพตซ์ 1 ตัวที่มีผลกับทั้งระบบ Internet Explorer โดยเป็นแพตซ์ที่มีความร้ายแรงระดับวิกฤติ (Critical)

แพตซ์สำหรับแก้ปัญหาความปลอดภัยที่มีความร้ายแรงระดับวิกฤติ (Critical)
แพตซ์สำหรับแก้ปัญหาความปลอดภัยที่มีความร้ายแรงระดับวิกฤติมีจำนวน 3 ตัว เป็นแพตซ์ของระบบ Windows จำนวน 2 ตัว และ Internet Explorer จำนวน 1 ตัว มีรายละเอียดดังต่อไปนี้

MS10-033: Vulnerabilities in Media Decompression Could Allow Remote Code Execution (979902)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-033.mspx
Impact: Remote Code Execution
Affected Software:
- Microsoft Windows 2000 Service Pack 4:
- Quartz.dll (DirectShow) (DirectX 9)
- Windows Media Format Runtime 9
- Windows Media Encoder 9 x86
- Asycfilt.dll (COM component)
- Windows XP Service Pack 2 only:
- Windows Media Format Runtime 9, Windows Media Format Runtime 9.5 and Windows Media Format Runtime 11
- Windows XP Service Pack 3 only:
- Windows Media Format Runtime 9, Windows Media Format Runtime 9.5 and Windows Media Format Runtime 11
- Windows XP Service Pack 2 and Windows XP Service Pack 3:
- Quartz.dll (DirectShow)
- Windows Media Encoder 9 x86
- Asycfilt.dll (COM component)
- Windows XP Professional x64 Edition Service Pack 2:
- Quartz.dll (DirectShow)
- Windows Media Format Runtime 9.5
- Windows Media Format Runtime 9.5 x64 Edition
- Windows Media Format Runtime 11
- Windows Media Encoder 9 x86
- Windows Media Encoder 9 x64
- Asycfilt.dll (COM component)
- Windows Server 2003 Service Pack 2:
- Quartz.dll (DirectShow)
- Windows Media Format Runtime 9.5
- Windows Media Encoder 9 x86
- Asycfilt.dll (COM component)
- Windows Server 2003 x64 Edition Service Pack 2:
- Quartz.dll (DirectShow)
- Windows Media Format Runtime 9.5
- Windows Media Format Runtime 9.5 x64 Edition
- Windows Media Encoder 9 x86
- Windows Media Encoder 9 x64
- Asycfilt.dll (COM component)
- Windows Server 2003 with SP2 for Itanium-based Systems:
- Quartz.dll (DirectShow)
- Asycfilt.dll (COM component)
- Windows Vista Service Pack 1 only:
- Quartz.dll (DirectShow)
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2:
- Asycfilt.dll (COM component)
- Windows Media Encoder 9 x86
- Windows Vista x64 Edition Service Pack 1 only:
- Quartz.dll (DirectShow)
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2:
- Asycfilt.dll (COM component)
- Windows Media Encoder 9 x86
- Windows Media Encoder 9 x64
- Windows Server 2008 for 32-bit Systems only:
- Quartz.dll (DirectShow) (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2:
- Asycfilt.dll (COM component) (Windows Server 2008 Server Core installation affected)
- Windows Media Encoder 9 x86 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems only:
- Quartz.dll (DirectShow) (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2:
- Asycfilt.dll (COM component) (Windows Server 2008 Server Core installation affected)
- Windows Media Encoder 9 x86 (Windows Server 2008 Server Core installation not affected)
- Windows Media Encoder 9 x64 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for Itanium-based Systems only:
- Quartz.dll (DirectShow) - Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2:
- Asycfilt.dll (COM component)
- Windows 7 for 32-bit Systems:
- Asycfilt.dll (COM component)
- Windows 7 for x64-based Systems:
- Asycfilt.dll (COM component)
- Windows Server 2008 R2 for x64-based Systems:
- Asycfilt.dll (COM component) (Windows Server 2008 R2 Server Core installation affected)
- Windows Server 2008 R2 for Itanium-based Systems:
- Asycfilt.dll (COM component)

MS10-034: Cumulative Security Update of ActiveX Kill Bits (980195)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-034.mspx
Impact: Remote Code Execution
Affected Software:
- Microsoft Windows 2000 Service Pack 4
- Windows XP Service Pack 2 and Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems
- Windows 7 for x64-based Systems
- Windows Server 2008 R2 for x64-based Systems (Windows Server 2008 R2 Server Core installation not affected)
- Windows Server 2008 R2 for Itanium-based Systems

MS10-035: Cumulative Security Update for Internet Explorer (982381)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-035.mspx
Impact: Remote Code Execution
Affected Software:
- Internet Explorer 5.01 Service Pack 4 on Microsoft Windows 2000 Service Pack 4
- Internet Explorer 6 Service Pack 1 when installed on Microsoft Windows 2000 Service Pack 4
- Internet Explorer 6 for Windows XP Service Pack 2 and Windows XP Service Pack 3
- Internet Explorer 6 for Windows XP Professional x64 Edition Service Pack 2
- Internet Explorer 6 for Windows Server 2003 Service Pack 2
- Internet Explorer 6 for Windows Server 2003 x64 Edition Service Pack 2
- Internet Explorer 6 for Windows Server 2003 with SP2 for Itanium-based Systems
- Internet Explorer 7 for Windows XP Service Pack 2 and Windows XP Service Pack 3
- Internet Explorer 7 for Windows XP Professional x64 Edition Service Pack 2
- Internet Explorer 7 for Windows Server 2003 Service Pack 2
- Internet Explorer 7 for Windows Server 2003 x64 Edition Service Pack 2
- Internet Explorer 7 for Windows Server 2003 with SP2 for Itanium-based Systems
- Internet Explorer 7 in Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Internet Explorer 7 in Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Internet Explorer 7 in Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
- Internet Explorer 7 in Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
- Internet Explorer 7 in Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Internet Explorer 8 for Windows XP Service Pack 2 and Windows XP Service Pack 3
- Internet Explorer 8 for Windows XP Professional x64 Edition Service Pack 2
- Internet Explorer 8 for Windows Server 2003 Service Pack 2
- Internet Explorer 8 for Windows Server 2003 x64 Edition Service Pack 2
- Internet Explorer 8 in Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Internet Explorer 8 in Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Internet Explorer 8 in Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
- Internet Explorer 8 in Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
- Internet Explorer 8 in Windows 7 for 32-bit Systems
- Internet Explorer 8 in Windows 7 for x64-based Systems
- Internet Explorer 8 in Windows Server 2008 R2 for x64-based Systems (Windows Server 2008 R2 Server Core installation not affected)
- Internet Explorer 8 in Windows Server 2008 R2 for Itanium-based Systems

แพตซ์สำหรับแก้ปัญหาความปลอดภัยที่มีความร้ายแรงสูง (Important)
แพตซ์สำหรับแก้ปัญหาความปลอดภัยที่มีความร้ายแรงสูงมีจำนวน 7 ตัว เป็นแพตซ์ของระบบ Windows จำนวน 4 ตัว Microsoft Office จำนวน 2 ตัว และทั้ง Windows และ Microsoft Office จำนวน 1 ตัว มีรายละเอียดดังต่อไปนี้

MS10-032: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (979559)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-032.mspx
Impact: Elevation of Privilege
Affected Software:
- Microsoft Windows 2000 Service Pack 4
- Windows XP Service Pack 2 and Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems
- Windows 7 for x64-based Systems
- Windows Server 2008 R2 for x64-based Systems (Windows Server 2008 R2 Server Core installation affected)
- Windows Server 2008 R2 for Itanium-based Systems

MS10-036: Vulnerability in COM Validation in Microsoft Office Could Allow Remote Code Execution (983235)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-036.mspx
Impact: Remote Code Execution
Affected Software:
- Microsoft Office XP Service Pack 3
- Microsoft Office 2003 Service Pack 3
- Microsoft Office Excel 2003 Service Pack 3
- Microsoft Office PowerPoint 2003 Service Pack 3
- Microsoft Office Publisher 2003 Service Pack 3
- Microsoft Office Visio 2003 Service Pack 3
- Microsoft Office Word 2003 Service Pack 3
- 2007 Microsoft Office System Service Pack 1 and 2007 Microsoft Office System Service Pack 2
- Microsoft Office Excel 2007 Service Pack 1 and Microsoft Office Excel 2007 Service Pack 2
- Microsoft Office PowerPoint 2007 Service Pack 1 and Microsoft Office PowerPoint 2007 Service Pack 2
- Microsoft Office Publisher 2007 Service Pack 1 and Microsoft Office Publisher 2007 Service Pack 2
- Microsoft Office Visio 2007 Service Pack 1 and Microsoft Office Visio 2007 Service Pack 2
- Microsoft Office Word 2007 Service Pack 1 and Microsoft Office Word 2007 Service Pack 2

MS10-037: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Elevation of Privilege (980218)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-037.mspx
Impact: Elevation of Privilege
Affected Software:
- Microsoft Windows 2000 Service Pack 4
- Windows XP Service Pack 2 and Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems
- Windows 7 for x64-based Systems
- Windows Server 2008 R2 for x64-based Systems (Windows Server 2008 R2 Server Core installation affected)
- Windows Server 2008 R2 for Itanium-based Systems

MS10-038: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (2027452)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-038.mspx
Impact: Remote Code Execution
Affected Software:
- Microsoft Office Excel 2002 Service Pack 3
- Microsoft Office Excel 2003 Service Pack 3
- Microsoft Office Excel 2007 Service Pack 1
- Microsoft Office Excel 2007 Service Pack 2
- Microsoft Office 2004 for Mac
- Microsoft Office 2008 for Mac
- Open XML File Format Converter for Mac
- Microsoft Office Excel Viewer Service Pack 1 and Microsoft Office Excel Viewer Service Pack 2
- Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 1 and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 2

MS10-039: Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege (2028554)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-039.mspx
Impact: Elevation of Privilege
Affected Software:
- Microsoft Office InfoPath 2003 Service Pack 3
- Microsoft Office InfoPath 2007 Service Pack 1 and Microsoft Office InfoPath 2007 Service Pack 2
- Microsoft Office SharePoint Server 2007 Service Pack 1 (32-bit editions)
- Microsoft Office SharePoint Server 2007 Service Pack 2 (32-bit editions)
- Microsoft Office SharePoint Server 2007 Service Pack 1 (64-bit editions)
- Microsoft Office SharePoint Server 2007 Service Pack 2 (64-bit editions)
- Microsoft Windows SharePoint Services 3.0 Service Pack 1 and Microsoft Windows SharePoint Services 3.0 Service Pack 2 (32-bit versions)
- Microsoft Windows SharePoint Services 3.0 Service Pack 1 and Microsoft Windows SharePoint Services 3.0 Service Pack 2 (64-bit versions)

MS10-040: Vulnerability in Internet Information Services Could Allow Remote Code Execution (982666)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-040.mspx
Impact: Remote Code Execution
Affected Software:
- Windows Server 2003 Service Pack 2:
- Internet Information Services 6.0 (Only affected when Extended Protection for Authentication has been installed)
- Windows Server 2003 x64 Edition Service Pack 2:
- Internet Information Services 6.0 (Only affected when Extended Protection for Authentication has been installed)
- Windows Server 2003 with SP2 for Itanium-based Systems:
- Internet Information Services 6.0 (Only affected when Extended Protection for Authentication has been installed)
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2:
- Internet Information Services 7.0 (Only affected when Extended Protection for Authentication has been installed)
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2:
- Internet Information Services 7.0 (Only affected when Extended Protection for Authentication has been installed)
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2:
- Internet Information Services 7.0 (Only affected when Extended Protection for Authentication has been installed) (Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2:
- Internet Information Services 7.0 (Only affected when Extended Protection for Authentication has been installed) (Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Internet Information Services 7.0 (Only affected when Extended Protection for Authentication has been installed)
- Windows 7 for 32-bit Systems:
- Internet Information Services 7.5
- Windows 7 for x64-based Systems:
- Internet Information Services 7.5
- Windows Server 2008 R2 for x64-based Systems:
- Internet Information Services 7.5 (Windows Server 2008 R2 Server Core installation affected)
- Windows Server 2008 R2 for Itanium-based Systems
- Internet Information Services 7.5

MS10-041: Vulnerability in Microsoft .NET Framework Could Allow Tampering (981343)
Update Link: http://www.microsoft.com/technet/security/Bulletin/MS10-041.mspx
Impact: Tampering
Affected Software:
- Microsoft Windows 2000 Service Pack 4:
- Microsoft .NET Framework 1.1 Service Pack 1
- Microsoft .NET Framework 2.0 Service Pack 2
- Windows XP Media Center Edition 2005 only:
- Microsoft .NET Framework 1.0 Service Pack 3
- Windows XP Media Center Edition 2005 and Windows XP Tablet PC Edition 2005 only:
- Microsoft .NET Framework 1.0 Service Pack 3
- Windows XP Service Pack 2 and Windows XP Service Pack 3:
- Microsoft .NET Framework 1.1 Service Pack 1
- Microsoft .NET Framework 3.5
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET 3.5 Service Pack 1
- Windows XP Professional x64 Edition Service Pack 2:
- Microsoft .NET Framework 1.1 Service Pack 1
- Microsoft .NET Framework 3.5
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows Server 2003 Service Pack 2:
- Microsoft .NET Framework 1.1 Service Pack 1
- Microsoft .NET Framework 3.5
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows Server 2003 x64 Edition Service Pack 2:
- Microsoft .NET Framework 1.1 Service Pack 1
- Microsoft .NET Framework 3.5
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows Server 2003 with SP2 for Itanium-based Systems:
- Microsoft .NET Framework 1.1 Service Pack 1
- Microsoft .NET Framework 3.5
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2:
- Microsoft .NET Framework 1.1 Service Pack 1
- Windows Vista Service Pack 1 only:
- Microsoft .NET Framework 2.0 Service Pack 1 and Microsoft .NET Framework 3.5
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows Vista Service Pack 2 only:
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2:
- Microsoft .NET Framework 1.1 Service Pack 1
- Windows Vista x64 Edition Service Pack 1 only:
- Microsoft .NET Framework 2.0 Service Pack 1 and Microsoft .NET Framework 3.5
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows Vista x64 Edition Service Pack 2 only:
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2:
- Microsoft .NET Framework 1.1 Service Pack 1 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for 32-bit Systems only:
- Microsoft .NET Framework 2.0 Service Pack 1 and Microsoft .NET Framework 3.5 (Windows Server 2008 Server Core installation not affected)
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for 32-bit Systems Service Pack 2 only:
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2:
- Microsoft .NET Framework 1.1 Service Pack 1 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems only:
- Microsoft .NET Framework 2.0 Service Pack 1 and Microsoft .NET Framework 3.5 (Windows Server 2008 Server Core installation not affected)
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems Service Pack 2 only:
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1 (Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2:
- Microsoft .NET Framework 1.1 Service Pack 1
- Windows Server 2008 for Itanium-based Systems only:
- Microsoft .NET Framework 2.0 Service Pack 1 and Microsoft .NET Framework 3.5
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows Server 2008 for Itanium-based Systems Service Pack 2 only:
- Microsoft .NET Framework 2.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1
- Windows 7 for 32-bit Systems:
- Microsoft .NET Framework 3.5.1
- Windows 7 for x64-based Systems:
- Microsoft .NET Framework 3.5.1
- Windows Server 2008 R2 for x64-based Systems:
- Microsoft .NET Framework 3.5.1 (Windows Server 2008 R2 Server Core installation affected)
- Windows Server 2008 R2 for Itanium-based Systems
- Microsoft .NET Framework 3.5.1

การแพตซ์ระบบ
ผู้ที่ใช้วินโดวส์และซอฟต์แวร์เวอร์ชันที่ได้รับผลกระทบ สามารถทำการอัพเดทจากเว็บไซต์ Microsoft Update ผ่านทางอินเทอร์เน็ต หรือทำการอัพเดทผ่านทาง Windows Server Update Services (WSUS) สำหรับผู้ใช้แบบองค์กรที่มีการติดตั้งระบบ WSUS Server ทั้งนี้ ตั้งแต่วันอังคารที่ 8 มิถุนายน 2553 (ตรงกับวันพุธที่ 9 มิถุนายน 2553 ตามเวลาในประเทศไทย) เป็นต้นไป

Severity and Exploitability Index

Deployment Priority

ส่งท้ายเอนทรี่
ถึงแม้ว่าการแพตซ์ระบบในเดือนมิถุนายนนี้เป็นภาระหนักของแอดมินเนื่องจากมีแพตซ์ต้องติดตั้งถึง 10 ตัว แต่เพื่อความปลอดภัยก็ขอให้ผู้ที่เป็นแอดมินทุกท่านทำการแพตซ์ระบบให้เรียบร้อยนะครับ โดยเฉพาะอย่างยิ่งแพตซ์ตัวที่มีความร้ายแรงระดับวิกฤติซึ่งมีอยู่จำนวน 3 ตัว

แหล่งข้อมูลอ้างอิง
Microsoft Security Bulletin Summary for June 2010
June 2010 Security Bulletin Release

ลิงค์ที่เกี่ยวข้อง
Microsoft Security Center

© 2010 TWA Blog. All Rights Reserved.

0 Comment:

Post a Comment