Security 10816 Published by

Microsoft updated the following two security bulletins: MS11-051 - Important: Vulnerability in Active Directory Certificate Services Web Enrollment Could Allow Elevation of Privilege (2518295) and MS11-049 - Important: Vulnerability in the Microsoft XML Editor Could Allow Information Disclosure (2543893)



MS11-051 - Important: Vulnerability in Active Directory Certificate Services Web Enrollment Could Allow Elevation of Privilege (2518295) - Version:1.1
Severity Rating: Important - Revision Note: V1.1 (June 15, 2011): Clarified the XSS Filter mitigation.

Summary: This security update resolves a privately reported vulnerability in Active Directory Certificate Services Web Enrollment. The vulnerability is a cross-site scripting (XSS) vulnerability that could allow elevation of privilege, enabling an attacker to execute arbitrary commands on the site in the context of the target user. An attacker who successfully exploited this vulnerability would need to send a specially crafted link and convince a user to click the link. In all cases, however, an attacker would have no way to force a user to visit the Web site. Instead, an attacker would have to persuade a user to visit the Web site, typically by getting them to click a link in an e-mail message or Instant Messenger message that takes the user to the vulnerable Web site.

Read more

MS11-049 - Important: Vulnerability in the Microsoft XML Editor Could Allow Information Disclosure (2543893) - Version:1.2
Severity Rating: Important - Revision Note: V1.2 (June 15, 2011): Removed erroneous entry from Non-Affected Software table.

Summary: This security update resolves a privately reported vulnerability in Microsoft XML Editor. The vulnerability could allow information disclosure if a user opened a specially crafted Web Service Discovery (.disco) file with one of the affected software listed in this bulletin. Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly, but it could be used to produce information that could be used to try to further compromise the affected system.

Read more