Time to update your TMG 2010 infrastructure

This Patch Tuesday (June, 13) Microsoft released many security bulletins, one of them was MS11-040. The bulletin discuss about a privately reported security vulnerability in Microsoft Forefront Threat Management Gateway (TMG) 2010 Client that could allow RCE (Remote Code Execution).

Also, in this week Microsoft released an update for Forefront TMG 2010 Service Pack 1 with Software Update 1. This is not a security update, but a Rollup 4 to correct some bugs found in HTTPS inspection, Malware inspection, E-mail Policy and TMG firewall engine.

Keep in mind that 4 of 11 bug fixes must activated running a script provided in their own KB page. In my opinion, this is great because you can choose if you want to enable the new functionality or not. For example, the KB2518663 has the following warning:

This resolution may make your computer or your network more vulnerable to attack by malicious users or by malicious software such as viruses. Microsoft does not recommend this resolution but is providing this information so that you can choose to implement this resolution at your own discretion. Use this resolution at your own risk.

For more information about the Rollup 4, read KB2517957.

Regards,

Paulo Oliveira.

Advertisements
This entry was posted in Security, Service Pack, TMG, Update and tagged , , , , , . Bookmark the permalink.

One Response to Time to update your TMG 2010 infrastructure

  1. uilson76 says:

    Really usefull information! I’ve applied this one here in my lab environment and all stuff are working fine!
    Good to know TMG Team are concerned about their customers and are still acting with proactivity!

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s