微软10月份安全公告发布

源代码网整理以下微软周二更新了10月份的安全公告，其中4个是严重等级的安全补丁，将修复Windows活动目录、IE浏览器、Excel和微软主机集成服务器等产品中的严重安全漏洞。主机集成服务器是把Windows计算机与IBM大型计算机集成在一起的产品。

源代码网整理以下严重的活动目录安全漏洞影响到Windows 2000 Server操作系统，但是，不影响其它版本的Windows操作系统。Excel安全漏洞影响到Windows和Mac OS X版本的这个产品。微软还发布了6个比严重等级低一级的“重要”等级的安全补丁。这些补丁将修复Windows中的安全漏洞。还有1个“中等”等级的补丁，修复Office软件中的安全漏洞。所有这些补丁现在已经可以下载到。
严重:
-KB957280: Vulnerability in Active Directory Could Allow Remote Code Execution
-KB956390: Cumulative Security Update for Internet Explorer
-KB956695: Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution
-KB956416: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution

重要:
-KB956803: Vulnerability in the Microsoft Ancillary Function Driver Could Allow Elevation of Privilege
-KB954211: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege
-KB953155: Vulnerability in Windows Internet Printing Service Could Allow Remote Code Execution
-KB957095: Vulnerability in SMB Could Allow Remote Code Execution
-KB956841: Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege
-KB951071: Vulnerability in Message Queuing Could Allow Remote Code Execution

中等:
-KB957699: Vulnerability in Microsoft Office Could Allow Information Disclosure