บทสรุปผู้บริหาร
ไมโครซอฟท์เตรียมออกอัปเดทของเดือนมิถุนายน 2554 หรือที่นิยมเรียกว่า Patch Tuesday จำนวน 16 ตัว เพื่อแก้ปัญหาความปลอดภัยในผลิตภัณฑ์ต่างๆ ดังนี้
• สำหรับแก้ช่องโหว่ความปลอดภัยใน Windows จำนวน 9 ตัว ในจำนวนนี้มีความร้ายแรงระดับวิกฤตจำนวน 4 ตัว และมีความร้ายแรงระดับสูง 5 ตัว
• สำหรับแก้ช่องโหว่ความปลอดภัยใน Windows และ Internet Explorer ที่มีความร้ายแรงระดับวิกฤตจำนวน 2 ตัว
• สำหรับแก้ช่องโหว่ความปลอดภัยใน Windows, Microsoft .NET Framework, และ Microsoft Silverlight ที่มีความร้ายแรงระดับวิกฤตจำนวน 1 ตัว
• สำหรับแก้ช่องโหว่ความปลอดภัยใน Microsoft Forefront Threat Management Gateway ที่มีความร้ายแรงระดับวิกฤตจำนวน 1 ตัว
• สำหรับแก้ช่องโหว่ความปลอดภัยใน Windows และ Microsoft .NET Framework ที่มีความร้ายแรงระดับวิกฤตจำนวน 1 ตัว
• สำหรับแก้ช่องโหว่ความปลอดภัยใน Microsoft Office มีความร้ายแรงระดับสูงจำนวน 1 ตัว
• สำหรับแก้ช่องโหว่ความปลอดภัยร้ายแรงระดับสูงใน Microsoft Office, SQL Server และ Microsoft Visual Studioจำนวน 1 ตัว
อัปเดทสำหรับแก้ปัญหาความปลอดภัยที่มีความร้ายแรงระดับวิกฤต (Critical)
อัปเดทสำหรับแก้ปัญหาความปลอดภัยใน Windows ที่มีความร้ายแรงระดับวิกฤตมีจำนวน 9 ตัว รายละเอียดดังต่อไปนี้
Microsoft Security Bulletin 1: Windows
Impact: Remote Code Execution
Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Note: Windows Server 2008 Server Core installation not affected
Microsoft Security Bulletin 2: Windows, Microsoft .NET Framework, Silverlight
Impact: Remote Code Execution
Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
- Microsoft Silverlight 4
Note: Windows Server 2008 Server Core installation not affected
Microsoft Security Bulletin 3: Forefront Threat Management Gateway
Impact: Remote Code Execution
Affected Software:
- Microsoft Forefront Threat Management Gateway 2010 Client
Microsoft Security Bulletin 4: Windows
Impact: Remote Code Execution
Affected Software:
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Microsoft Security Bulletin 5: Windows
Impact: Remote Code Execution
Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Microsoft Security Bulletin 6: Windows
Impact: Remote Code Execution
Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Note: Windows Server 2008 Server Core installation not affected
Microsoft Security Bulletin 7: Windows, Microsoft .NET Framework
Impact: Remote Code Execution
Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Note: Windows Server 2008 Server Core installation not affected
Microsoft Security Bulletin 8: Windows, Internet Explorer
Impact: Remote Code Execution
Affected Software:
- Windows XP Service Pack 3: Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8
- Windows XP Professional x64 Edition Service Pack 2: Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8
- Windows Server 2003 Service Pack 2: Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8
- Windows Server 2003 x64 Edition Service Pack 2: Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8
- Windows Server 2003 with SP2 for Itanium-based Systems: Internet Explorer 6 and Internet Explorer 7
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2: Internet Explorer 7 และ- Internet Explorer 8
- Windows Vista Service Pack 2: Internet Explorer 9
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2: Internet Explorer 7 และ- Internet Explorer 8
- Windows Vista x64 Edition Service Pack 2:- Internet Explorer 9
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2: Internet Explorer 7 and Internet Explorer 8
- Windows Server 2008 for 32-bit Systems Service Pack 2: Internet Explorer 9
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2: Internet Explorer 7 and Internet Explorer 8
- Windows Server 2008 for x64-based Systems Service Pack 2: Internet Explorer 9
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2: Internet Explorer 7
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1: Internet Explorer 8 and Internet Explorer 9
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1: Internet Explorer 8 and Internet Explorer 9
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1: Internet Explorer 8 and Internet Explorer 9
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1: Internet Explorer 8
Note: (Windows Server 2008 Server Core and Windows Server 2008 R2 Server Core installation not affected)
Microsoft Security Bulletin 9: Windows, Internet Explorer
Impact: Remote Code Execution
Affected Software:
- Windows XP Service Pack 3:- Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8
- Windows XP Professional x64 Edition Service Pack 2:- Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8
- Windows Server 2003 Service Pack 2:- Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8
- Windows Server 2003 x64 Edition Service Pack 2:- Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8
- Windows Server 2003 with SP2 for Itanium-based Systems:- Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2: Internet Explorer 7 and Internet Explorer 8
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2: Internet Explorer 7 and Internet Explorer 8
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2: Internet Explorer 7 and Internet Explorer 8
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2:- Internet Explorer 7 and Internet Explorer 8
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2: Internet Explorer 7
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1: Internet Explorer 8
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1: Internet Explorer 8
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1: Internet Explorer 8
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1: Internet Explorer 8
อัปเดทสำหรับแก้ปัญหาความปลอดภัยที่มีความร้ายแรงสูง (Important)
อัปเดทสำหรับแก้ปัญหาความปลอดภัยที่มีความร้ายแรงสูงมีจำนวน 7 ตัว รายละเอียดดังต่อไปนี้
Microsoft Security Bulletin 10: Windows
Impact: Information Disclosure
Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Microsoft Security Bulletin 11: Microsoft Office
Impact: Remote Code Execution
Affected Software:
- Microsoft Excel 2002 Service Pack 3
- Microsoft Excel 2003 Service Pack 3
- Microsoft Excel 2007 Service Pack 2
- Microsoft Excel 2010 (32-bit editions)
- Microsoft Excel 2010 (64-bit editions)
- Microsoft Office 2004 for Mac
- Microsoft Office 2008 for Mac
- Microsoft Office for Mac 2011
- Open XML File Format Converter for Mac
- Microsoft Excel Viewer Service Pack 2
- Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 2
Microsoft Security Bulletin 12: Windows
Impact: Elevation of Privilege
Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Microsoft Security Bulletin 13: Windows
Impact: Denial of Service
Affected Software:
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
Microsoft Security Bulletin 14: Microsoft Office
Impact: Denial of Service
Affected Software:
- Windows Vista Service Pack 1 and Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Microsoft Security Bulletin 15: Microsoft Office, SQL Server, Visual Studio
Impact: Information Disclosure
Affected Software:
- Microsoft InfoPath 2007 Service Pack 2
- Microsoft InfoPath 2010 (32-bit editions)
- Microsoft InfoPath 2010 (64-bit editions)
- SQL Server 2005 Service Pack 3
- SQL Server 2005 x64 Edition Service Pack 3
- SQL Server 2005 for Itanium-based Systems Service Pack 3
- SQL Server 2005 Service Pack 4
- SQL Server 2005 x64 Edition Service Pack 4
- SQL Server 2005 for Itanium-based Systems Service Pack 4
- SQL Server 2005 Express Edition Service Pack 3
- SQL Server 2005 Express Edition Service Pack 4
- SQL Server 2005 Express Edition with Advanced Services Service Pack 3
- SQL Server 2005 Express Edition with Advanced Services Service Pack 4
- SQL Server Management Studio Express (SSMSE) 2005
- SQL Server Management Studio Express (SSMSE) 2005 x64 Edition
- SQL Server 2008 for 32-bit Systems Service Pack 1
- SQL Server 2008 for x64-based Systems Service Pack 1
- SQL Server 2008 for Itanium-based Systems Service Pack 1
- SQL Server 2008 for 32-bit Systems Service Pack 2
- SQL Server 2008 for x64-based Systems Service Pack 2
- SQL Server 2008 for Itanium-based Systems Service Pack 2
- SQL Server 2008 R2 for 32-bit Systems
- SQL Server 2008 R2 for x64-based Systems
- SQL Server 2008 R2 for Itanium-based Systems
- Microsoft Visual Studio 2005 Service Pack 1
- Microsoft Visual Studio 2008 Service Pack 1
- Microsoft Visual Studio 2010
Microsoft Security Bulletin 16: Windows
Impact: Elevation of Privilege
Affected Software:
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
การออกอัปเดทและการอัปเดทระบบ
ไมโครซอฟท์วางแผนที่จะออกแพตช์ของเดือนมิถุนายน 2554 ในวันอังคารที่ 14 (ตรงกับวันพุธที่ 15 ตามเวลาในประเทศไทย) ที่จะถึงนี้ โดยผู้ใช้ทั่วไปสามารถทำการอัปเดทจากเว็บไซต์ Microsoft Update ผ่านทางอินเทอร์เน็ต หรือทำการอัปเดทผ่านทางเซิร์ฟเวอร์ WSUS สำหรับผู้ใช้แบบองค์กรที่มีการติดตั้งระบบ Windows Server Update Services ทั้งนี้ ตั้งแต่วันที่ 14 มิถุนายน 2554 เป็นต้นไป
ความเห็นของผู้เขียน
แม้ว่าการอัปเดทในเดือนมิถุนายนจะเป็นงานหนักเนื่องจากมีอัปเดทให้ติดตั้งถึง 16 ตัว และมีอัปเดทถึง 9 ตัวที่มีความร้ายแรงระดับวิกฤต ที่สำคัญมีถึง 8 ตัวเป็นอัปเดทสำหรับ Windows ดังนั้นเพื่อความปลอดภัยขอให้ท่านแอดมินที่รับผิดชอบในการอัปเดทระบบเตรียมแผนการติดตั้งอัปเดทไว้รองรับและทำการอัปเดทระบบให้เรียบร้อย (โดยเฉพาะอัปเดทที่มีความร้ายแรงระดับวิกฤตสำหรับ Windows) เมื่อไมโครซอฟท์ออกอัปเดทนะครับ
บทความโดย: Thai Windows Administrator Blog
แหล่งข้อมูลอ้างอิง
• Microsoft Security Center
• Microsoft Security Bulletin Advance Notification for June 2011
Copyright © 2011 TWA Blog. All Rights Reserved.
0 Comment:
Post a Comment