Microsoft has released their Advanced Notification for the upcoming July 2012 edition of Patch Tuesday.  During this round, Microsoft will be releasing nine bulletins addressing 16 vulnerabilities.

I am making the assumption that Microsoft will indeed be patching a vulnerability that has had limited zero-day attacks.  During the June 2012 Patch Tuesday, Microsoft released a Security Advisory (KB2719615) announcing a vulnerability in MSXML that had limited attacks against.  On Patch Tuesday, pay particular attention to see if this is the case of Microsoft releasing a patch for a Zero-Day vulnerability.

In addition, every computer on your network will face some type of patching this month.  One of the bulletins has quite a few products associated to it.

 Security Bulletin Breakdown:

  • 3 bulletins are rated as Critical
  • 6 bulletins are rated as Important
  • 5 bulletins addressing vulnerabilities that could lead to Remote Code Execution
  • 3 bulletins addressing vulnerabilities that could lead to Elevation of Privilege
  • 1 bulletin addressing vulnerabilities that could lead to Information Disclosure

Affected Products:

  • All supported versions of Microsoft Operating Systems
  • Microsoft Internet Explorer 9
  • All supported versions of Microsoft Office products (2003, 2007, 2010)
  • Microsoft InfoPath 2007, 2010
  • Microsoft SharePoint Server 2007, 2010
  • Microsoft Groove Server 2010
  • Microsoft SharePoint Services 3.0
  • Microsoft SharePoint Foundation 2010
  • Microsoft Office Web Apps 2010
  • Microsoft Visual Basic for Applications
  • Microsoft Visual Basic for Applications SDK

 I will be going over the July Patch Tuesday in detail in addition to any other non-Microsoft releases since the last Patch Tuesday in our Monthly Patch Tuesday webinar.  In addition, I will be spending some time discussing the Flame virus situation.  This webinar is scheduled for next Wednesday, July 11th at 11:00am CT.  You can register for this webinar here.

 - Jason Miller