Biggest Patch Tuesday Yet

So yesterday was the biggest patch Tuesday yet, some 13 vulnerabilities addressed, cover a total of 34 potential exploits. Several of them with publicly available exploits and with a good number of the rest rated as highly exploitable.

Critical bulletins:

• Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)
• Cumulative Security Update of ActiveX Kill Bits (973525)
• Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)
• Vulnerability in Windows Media Player Could Allow Remote Code Execution (974112)
• Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution (974378)
• Cumulative Security Update for Internet Explorer (974455)
• Vulnerabilities in SMBv2 Could Allow Remote Code Execution (975517)
• Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (975682)

Important bulletins:

• Vulnerability in Indexing Service Could Allow Remote Code Execution (969059)
• Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)
• Vulnerabilities in Windows CryptoAPI Could Allow Spoofing (974571)
• Vulnerabilities in FTP Service for Internet Information Services Could Allow Remote Code Execution (975254)
• Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (975467)

Alas this month there are far too many issues to detail, so we'll point you all at the Microsoft Technet Site for more info. It is highly recommended that you get every one of the patches installed as soon as possible.