This document describes Symantec product detections for the Microsoft vulnerabilities for which Microsoft releases patches in their monthly Security Advisories.
Note: Symantec posts this information shortly after it becomes available from Microsoft. Any missing information will be added to the document as it becomes available.
ID and Rating | CAN/CVE ID: CVE-2012-0002 BID: 52353 Microsoft ID: MS12-020 MSKB: 2671387 Microsoft Rating: Critical |
Vulnerability Type |
Microsoft Remote Desktop Protocol CVE-2012-0002 Remote Code Execution Vulnerability |
Vulnerability Affects | Windows XP SP3, Windows XP Professional x64 Edition SP2, Windows Server 2003 SP2, Windows Server 2003 x64 Edition SP2, Windows Server 2003 with SP2 for Itanium-based Systems, Windows Vista SP2, Windows Vista x64 Edition SP2, Windows Server 2008 for 32-bit Systems SP2, Windows Server 2008 for x64-based Systems SP2, Windows Server 2008 for Itanium-based Systems SP2, Windows 7 for 32-bit Systems, Windows 7 for 32-bit Systems SP1, Windows 7 for x64-based Systems, Windows 7 for x64-based Systems SP1, Windows Server 2008 R2 for x64-based Systems, Windows Server 2008 R2 for x64-based Systems SP1, Windows Server 2008 R2 for Itanium-based Systems, and Windows Server 2008 R2 for Itanium-based Systems SP1 |
Details |
|
Intrusion Protection System (IPS) Response | Sig ID: 25610 Detected as "Microsoft RDP CVE-2012-0002 3" |
Other Detections | AV: N/A Sygate IDS: N/A Symantec Critical System Protection IPS: N/A |
ID and Rating | CAN/CVE ID: CVE-2012-0016 BID: 52375 Microsoft ID: MS12-016 MSKB: 2651018 Microsoft Rating: Important |
Vulnerability Type |
Microsoft Expression 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability |
Vulnerability Affects | Microsoft Expression Design, SP1, 2, 3, and 4 |
Details |
|
Intrusion Protection System (IPS) Response | Sig ID: N/A |
Other Detections | AV: N/A Sygate IDS: N/A Symantec Critical System Protection IPS: SCSPBP1: Generic Windows Interactive Protection |
ID and Rating | CAN/CVE ID: CVE-2012-0006 BID: 52374 Microsoft ID: MS12-017 MSKB: 2647170 Microsoft Rating: Important |
Vulnerability Type | Microsoft Windows DNS Server (CVE-2012-0006) Remote Denial of Service Vulnerability Denial of Service Vulnerability |
Vulnerability Affects | Windows Server 2003 SP2, Windows Server 2003 x64 Edition SP2, Windows Server 2003 with SP2 for Itanium-based Systems, Windows Server 2008 for 32-bit Systems SP2, Windows Server 2008 for x64-based Systems SP2, Windows Server 2008 R2 for x64-based Systems, and Windows Server 2008 R2 for x64-based Systems SP1 |
Details |
|
Intrusion Protection System (IPS) Response | Sig ID: N/A |
Other Detections | AV: N/A Sygate IDS: N/A Symantec Critical System Protection IPS: N/A |
ID and Rating | CAN/CVE ID: CVE-2012-0157 BID: 52317 Microsoft ID: MS12-018 MSKB: 2641653 Microsoft Rating: Important |
Vulnerability Type | Microsoft Windows Kernel 'Win32k.sys' (CVE-2012-0157) Local Privilege Escalation Vulnerability Elevation of Privilege Vulnerability |
Vulnerability Affects | Windows XP SP3, Windows XP Professional x64 Edition SP2, Windows Server 2003 SP2, Windows Server 2003 x64 Edition SP2, Windows Server 2003 with SP2 for Itanium-based Systems, Windows Vista SP2, Windows Vista x64 Edition SP2, Windows Server 2008 for 32-bit Systems SP2, Windows Server 2008 for x64-based Systems SP2, Windows Server 2008 for Itanium-based Systems SP2, Windows 7 for 32-bit Systems, Windows 7 for 32-bit Systems SP1, Windows 7 for x64-based Systems, Windows 7 for x64-based Systems SP1, Windows Server 2008 R2 for x64-based Systems, Windows Server 2008 R2 for x64-based Systems SP1, Windows Server 2008 R2 for Itanium-based Systems, and Windows Server 2008 R2 for Itanium-based Systems SP1 |
Details |
|
Intrusion Protection System (IPS) Response | Sig ID: N/A |
Other Detections | AV: N/A Sygate IDS: N/A Symantec Critical System Protection IPS: N/A |
ID and Rating | CAN/CVE ID: CVE-2012-0152 BID: 52354 Microsoft ID: MS12-020 MSKB: 2671387 Microsoft Rating: Important |
Vulnerability Type |
Microsoft Remote Desktop Protocol Service CVE-2012-0152 Denial of Service Vulnerability |
Vulnerability Affects | Windows 7 for 32-bit Systems, Windows 7 for 32-bit Systems SP1, Windows 7 for x64-based Systems, Windows 7 for x64-based Systems SP1, Windows Server 2008 R2 for x64-based Systems, Windows Server 2008 R2 for x64-based Systems SP1, Windows Server 2008 R2 for Itanium-based Systems, and Windows Server 2008 R2 for Itanium-based Systems SP1 |
Details |
|
Intrusion Protection System (IPS) Response | Sig ID: N/A |
Other Detections | AV: N/A Sygate IDS: N/A Symantec Critical System Protection IPS: N/A |
ID and Rating | CAN/CVE ID: CVE-2012-0008 BID: 52329 Microsoft ID: MS12-021 MSKB: 2651019 Microsoft Rating: Important |
Vulnerability Type | Microsoft Visual Studio Add-In Local Privilege Escalation Vulnerability Elevation of Privilege Vulnerability |
Vulnerability Affects | Microsoft Visual Studio 2008 SP1, 2010, and 2010 SP1 |
Details |
|
Intrusion Protection System (IPS) Response | Sig ID: N/A |
Other Detections | AV: N/A Sygate IDS: N/A Symantec Critical System Protection IPS: SCSPBP1: Generic Windows Interactive Protection |
ID and Rating | CAN/CVE ID: CVE-2012-0156 BID: 52332 Microsoft ID: MS12-019 MSKB: 2665364 Microsoft Rating: Moderate |
Vulnerability Type | Microsoft Windows 'DirectWrite' API Denial of Service Vulnerability Denial of Service Vulnerability |
Vulnerability Affects | Windows Vista SP2, Windows Vista x64 Edition SP2, Windows Server 2008 for 32-bit Systems SP2, Windows Server 2008 for x64-based Systems SP2, Windows 7 for 32-bit Systems, Windows 7 for 32-bit Systems SP1, Windows 7 for x64-based Systems, Windows 7 for x64-based Systems SP1, Windows Server 2008 R2 for x64-based Systems, Windows Server 2008 R2 for x64-based Systems SP1, Windows Server 2008 R2 for Itanium-based Systems, and Windows Server 2008 R2 for Itanium-based Systems SP1 |
Details |
|
Intrusion Protection System (IPS) Response | Sig ID: N/A |
Other Detections | AV: N/A Sygate IDS: N/A Symantec Critical System Protection IPS: N/A |