Wednesday, January 9, 2013

SCOM SP1 & SCOM R2 Microsoft Security Bulletin MS13-003

Yesterday Microsoft published Security Bulletin MS13-003.

This security bulletin contains fixes for ‘…two privately reported vulnerabilities in Microsoft System Center Operations Manager. The vulnerabilities could allow elevation of privilege if a user visits an affected website by way of a specially crafted URL. An attacker would have no way to force users to visit such a website. Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes users to the affected website…’

Affected software
- SCOM SP1
- SCOM R2

Taken directly from the same security bulletin
’…Microsoft recommends that customers apply the update at the earliest opportunity using update management software, or by checking for updates using the Microsoft Update service…’

Want to know more? Go here.

No comments: