This application requires Javascript for optimal performance.

Microsoft Security Bulletin for August 10, 2010

The table below lists the Microsoft vulnerabilities for August.
MS Bulletin Number Microsoft Bulletin TitleSeverityImpact of VulnerabilityAffected SoftwareCVE ID
MS10-046Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198)CriticalRemote Code ExecutionMicrosoft Windows CVE-2010-2568
MS10-049Vulnerabilities in SChannel Could Allow Remote Code Execution (980436)CriticalRemote Code ExecutionMicrosoft Windows CVE-2010-2566
CVE-2009-3555
MS10-051Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (2079403)CriticalRemote Code ExecutionMicrosoft Windows CVE-2010-2561
MS10-052Vulnerability in Microsoft MPEG Layer-3 Codecs Could Allow Remote Code Execution (2115168)CriticalRemote Code ExecutionMicrosoft Windows CVE-2010-1882
MS10-053Cumulative Security Update for Internet Explorer (2183461)CriticalRemote Code ExecutionMicrosoft Windows, Internet Explorer CVE-2010-2557
CVE-2010-2560
CVE-2010-2556
CVE-2010-2558
CVE-2010-2559
CVE-2010-1258
MS10-054Vulnerabilities in SMB Server Could Allow Remote Code Execution (982214)CriticalRemote Code ExecutionMicrosoft Windows CVE-2010-2550
CVE-2010-2551
CVE-2010-2552
MS10-055Vulnerability in Cinepak Codec Could Allow Remote Code Execution (982665)CriticalRemote Code ExecutionMicrosoft Windows CVE-2010-2553
MS10-056Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (2269638)CriticalRemote Code ExecutionMicrosoft Office CVE-2010-1900
CVE-2010-1901
CVE-2010-1902
CVE-2010-1903
MS10-060Vulnerabilities in the Microsoft .NET Common Language Runtime and in Microsoft Silverlight Could Allow Remote Code Execution (2265906)CriticalRemote Code ExecutionMicrosoft Windows, Microsoft .NET Framework, Microsoft Silverlight CVE-2010-0019
CVE-2010-1898
MS10-047Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (981852)ImportantElevation of PrivilegeMicrosoft Windows CVE-2010-1888
CVE-2010-1889
MS10-048Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2160329)ImportantElevation of PrivilegeMicrosoft Windows CVE-2010-1894
CVE-2010-1895
CVE-2010-1896
CVE-2010-1897
MS10-050Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (981997)ImportantRemote Code ExecutionMicrosoft Windows CVE-2010-2564
MS10-057Vulnerability in Microsoft Office Excel Could Allow Remote Code Execution (2269707)ImportantRemote Code ExecutionMicrosoft Office CVE-2010-2562
MS10-058Vulnerabilities in TCP/IP Could Allow Elevation of Privilege (978886)ImportantElevation of PrivilegeMicrosoft Windows CVE-2010-1893
CVE-2010-1892
MS10-059Vulnerabilities in the Tracing Feature for Services Could Allow an Elevation of Privilege (982799)ImportantElevation of PrivilegeMicrosoft Windows CVE-2010-2555


Threat Remediation


Fortinet provides coverage on Microsoft vulnerabilities in August 10, 2010.

CVE NumberSignature Name
CVE-2010-0019MS.Silverlight.Memory.Corruption
CVE-2010-1882MS.MPEG.Audio.Decoder.Buffer.Overflow
CVE-2010-1901MS.Word.RTF.Parsing.Engine.Memory.Corruption
CVE-2010-2553MS.Cinepak.Codec.Decompression.Code.Execution
CVE-2010-2557MS.IE.Close.Event.Handling.Memory.Corruption
CVE-2010-2560MS.IE.HTML.Layout.Memory.Corruption
CVE-2010-2562MS.Excel.SXVI.iCache.Memory.Corruption
CVE-2010-2564MS.Movie.Maker.Memory.Corruption
CVE-2010-1902MS.Word.RTF.Parsing.Buffer.Overflow
CVE-2010-1903MS.Word.Linked.Objects.Memory.Corruption
CVE-2010-2550MS.SMB.Server.Code.Execution
CVE-2010-2556MS.IE.Iframe.Uninitialized.Memory.Corruption
CVE-2010-2559MS.IE.Stytle.Changing.Memory.Corruption
CVE-2010-2561MS.XML.Core.Services.Memory.Corruption
CVE-2010-1258MS.IE.Event.Handler.Cross.Domain.Information.Disclosure
CVE-2010-2551MS.SMB.Variable.Validation
CVE-2010-2552MS.SMB.Stack.Exhaustion

For more information on new and enhanced signatures, visit the IPS Service Update History. If you require more information, contact the FortiGuard Team using our Contact Us web page.


Document History


Revision DateVersion Number
Tuesday, August 10 20101Initial Documentation.


Reference: