Microsoft Security DDoS exploit vulnerabilities addressed for April 2012

Microsoft has issued a Security Bulletin Advance Notification indicating that its April release contains six bulletins.

These bulletins will have the severity rating of critical and important and will be for Microsoft Windows, Internet Explorer, .Net Framework, Office, SQL Server, Server Software, Developer Tools, and Forefront United Access Gateway. Release of these bulletins is scheduled for Tuesday, April 10, 2012.Published Microsoft


Vulnerability Titles

  • JScript9 Remote Code Execution Vulnerability
  • OnReadyStateChange Remote Code Execution Vulnerability
  • SelectAll Remote Code Execution Vulnerability
  • VML Style Remote Code Execution Vulnerability
  • WinVerifyTrust Signature Validation Vulnerability
  • NET Framework Parameter Validation Vulnerability
  • Unfiltered Access to UAG Default Website Vulnerability
  • MSCOMCTL.OCX RCE Vulnerability
  • Office WPS Converter Heap Overflow Vulnerability

Published by:

siavash's picture