Microsoft Advanced Notification for October 2012 – Lync, SQL, Headache

Microsoft has released its AdvancedNotification for October 2012. After last months release of only two patches, many people expected a huge release this month but it looks we got lucky withonly seven bulletins this month with only one of those listed as critical. Not as lucky as lastmonths two bulletins but a far cry from the all time high of seventeen.

The seven bulletins this month break downinto three Remote Code Executions, three Elevation of Privileges and one Denialof Service. Applications affected are Microsoft Office 2003, 2007, and 2010 andmaybe Office for OSX, Server Software, including Sharepoint, Lync, Windowsitself and even SQL Server. Two of thebulletins are listed as definitely requiring a restart and the rest say theymight require a restart.

Based on what we know right now the twobulletins for Lync and SQL Server seem to be the most interesting. If you are unfamiliar with Lync, it's Microsoft corporate messaging solution that is integrated into Office. We haven't seen a lot of vulnerabilities in Lync yet and this one mayindicate a change of focus by some researchers. With SQL being as widespreadand important as it is, any vulnerability in that package is definitelyinteresting.

Don't forget this month will also see anupdate from Microsoft that will prevent the use of 512 bit certificates that wewrote about last month. If you have any legacy systems still in production which the Trustwave Global Security Report says that at least 1% of you do, this update may cause you some headaches.

Trustwave reserves the right to review all comments in the discussion below. Please note that for security and other reasons, we may not approve comments containing links.