Thu, Jan 21 2010 4:09 Don

Microsoft Security Advisory Notification- January 20, 2010

Issued: January 20, 2010

Security Advisories Updated or Released Today

* Microsoft Security Advisory (979682)
- Title: Vulnerability in Windows Kernel Could Allow
Elevation of Privilege
- Revision Note: V1.0 (January 20, 2010): Advisory published.

* Microsoft Security Advisory (979352)
- Title: Vulnerability in Internet Explorer Could
Allow Remote Code Execution
- Revision Note: V1.2 (January 20, 2010): Revised Executive
Summary to reflect the changing nature of attacks attempting
to exploit the vulnerability. Clarified information in the
Mitigating Factors section for Data Execution Prevention
(DEP) and Microsoft Outlook, Outlook Express, and Windows
Mail. Clarified several Frequently Asked Questions to provide
further details about the vulnerability and ways to limit the
possibility of exploitation. Added "Enable or disable
ActiveX controls in Office 2007" and "Do not open unexpected
files" to the Workarounds section.

Filed under: