On Tuesday, Microsoft and Oracle released critical patches that affect multiple products. Microsoft patches address Excel, Wordpad, DirectShow, HTTP Services and IE vulnerabilities that could allow for privilege escalation and remote code execution. Oracle released 43 critical patches that address Database, Application Server, Collaboration, E-Business, PeopleSoft Enterprise, Siebel Enterprise and WebLogic Server vulnerabilities in their quarterly patch update schedule.
More information on the patches can be found at:
MS - https://www.microsoft.com/technet/security/bulletin/ms09-apr.mspx
Oracle - http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2009.html
Posted by Brad Graves on April 16, 2009, in Handlers Log.