It’s that time of the month again. In keeping with its usual schedule, Microsoft has released this month’s batch of security bulletins and patches for Windows and related software. For August, there are nine bulletins, for 15 identified vulnerabilities. Five of the bulletins are for Windows and its components; three of these have a maximum severity rating of Critical, and the other two are rated Important. All supported versions of Windows are affected. (For a breakdown of bulletins by severity and Windows version, please see this month’s preview post.)
There are also three bulletins that affect Microsoft Office. One of these, which is rated Critical, also applies to server software components, including SQL Server. as well as to Visual FoxPro and Visual Basic. The other two Office bulletins are rated Important. Finally, there is one bulletin, rated Critical, for Microsoft Exchange Server.
Further details, and download links, are in the Security Bulletin Summary for August 2012. Microsoft says that four of the patch installations will definitely require a system restart, and that the others may require one, depending on the configuration of your system.
As always, I recommend that you update your systems as soon as you conveniently can.
Update Tuesday, 14 August, 22:17 EDT
The folks at the SANS Internet Storm Center have posted their customary evaluation of this month’s bulletins, along with their own severity ratings.