Tag Archives: Microsoft

Microsoft Security Bulletin Summary for April 2015

Microsoft Patch Time:

  • Cumulative Security Update for Internet Explorer (3038314)
  • Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3048019)
  • Vulnerability in HTTP.sys Could Allow Remote Code Execution (3042553)
  • Vulnerability in Microsoft Graphics Component Could Allow Remote Code Execution (3046306)
  • Vulnerabilities in Microsoft SharePoint Server Could Allow Elevation of Privilege (3052044)
  • Vulnerability in Windows Task Scheduler Could Allow Elevation of Privilege (3046269)
  • Vulnerabilities in Microsoft Windows Could Allow Elevation of Privilege (3049576)
  • Vulnerability in XML Core Services Could Allow Security Feature Bypass (3046482)
  • Vulnerability in Active Directory Federation Services Could Allow Information Disclosure (3045711)
  • Vulnerability in .NET Framework Could Allow Information Disclosure (3048010)
  • Vulnerability in Windows Hyper-V Could Allow Denial of Service (3047234)

Microsoft Security Bulletin Summary for April 2015

Microsoft Security Bulletin Summary for February 2015

Updates for the month of February 2015:

  • Security Update for Internet Explorer (3034682)
  • Vulnerabilities in Windows Kernel-Mode Driver Could Allow Remote Code Execution (3036220)
  • Vulnerability in Group Policy Could Allow Remote Code Execution (3000483)
  • Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3032328)
  • Vulnerability in Microsoft Office Could Allow Security Feature Bypass (3033857)
  • Vulnerability in Group Policy Could Allow Security Feature Bypass (3004361)
  • Vulnerability in Microsoft Windows Could Allow Elevation of Privilege (3031432)
  • Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3029944)
  • Vulnerability in Virtual Machine Manager Could Allow Elevation of Privilege (3035898)

Microsoft Security Bulletin Summary for February 2015

Microsoft Security Bulletin Summary for January 2015

Patch windows or die, it’s hard to come up with a new description for this each month:

  • Vulnerability in Windows Application Compatibility Cache Could Allow Elevation of Privilege (3023266)
  • Vulnerability in Windows Telnet Service Could Allow Remote Code Execution (3020393)
  • Vulnerability in Windows User Profile Service Could Allow Elevation of Privilege (3021674)
  • Vulnerability in Windows Components Could Allow Elevation of Privilege (3025421)
  • Vulnerability in Network Location Awareness Service Could Allow Security Feature Bypass (3022777)
  • Vulnerability in Windows Error Reporting Could Allow Security Feature Bypass (3004365)
  • Vulnerability in Network Policy Server RADIUS Implementation Could Cause Denial of Service (3014029)
  • Vulnerability in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (3019215)

Microsoft Security Bulletin Summary for January 2015

Microsoft Security Bulletin Summary for December 2014

  • Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege (3009712)
  • Cumulative Security Update for Internet Explorer (3008923)
  • Vulnerabilities in Microsoft Word and Microsoft Office Web Apps Could Allow Remote Code Execution (3017301)
  • Vulnerability in Microsoft Office Could Allow Remote Code Execution (3017349)
  • Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (3017347)
  • Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3016711)
  • Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126)

Microsoft Security Bulletin Summary for December 2014

Microsoft Security Bulletin Summary for November 2014

Monthly updates from Microsoft:

  • Vulnerabilities in Windows OLE Could Allow Remote Code Execution (3011443)
  • Cumulative Security Update for Internet Explorer (3003057)
  • Vulnerability in Schannel Could Allow Remote Code Execution (2992611)
  • Vulnerability in XML Core Services Could Allow Remote Code Execution (2993958)
  • Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3009710)
  • Vulnerability in TCP/IP Could Allow Elevation of Privilege (2989935)
  • Vulnerability in Windows Audio Service Could Allow Elevation of Privilege (3005607)
  • Vulnerability in .NET Framework Could Allow Elevation of Privilege (3005210)
  • Vulnerability in Microsoft SharePoint Foundation Could Allow Elevation of Privilege (3000431)
  • Vulnerability in Remote Desktop Protocol Could Allow Security Feature Bypass (3003743)
  • Vulnerability in Internet Information Services (IIS) Could Allow Security Feature Bypass (2982998)
  • Vulnerability in Active Directory Federation Services Could Allow Information Disclosure (3003381)
  • Vulnerability in IME (Japanese) Could Allow Elevation of Privilege (2992719)
  • Vulnerability in Kernel Mode Driver Could Allow Denial of Service (3002885)

Not that at the time of righting this there are missing entries on the buliten:

  • MS14-068 Release date to be determined
  • MS14-075 Release date to be determined

Microsoft Security Bulletin Summary for November 2014

Microsoft Security Bulletin Summary for October 2014

Patch time again:

  • Cumulative Security Update for Internet Explorer (2987107)
  • Vulnerabilities in .NET Framework Could Allow Remote Code Execution (3000414)
  • Vulnerability in Kernel-Mode Driver Could Allow Remote Code Execution (3000061)
  • Vulnerability in ASP.NET MVC Could Allow Security Feature Bypass (2990942)
  • Vulnerability in Windows OLE Could Allow Remote Code Execution (3000869)
  • Vulnerability in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (3000434)
  • Vulnerability in Message Queuing Service Could Allow Elevation of Privilege (2993254)
  • Vulnerability in FAT32 Disk Partition Driver Could Allow Elevation of Privilege (2998579)

Microsoft Security Bulletin Summary for October 2014

Microsoft Security Bulletin Summary for September 2014

Patches for September:

  • Cumulative Security Update for Internet Explorer (2977629)
  • Vulnerability in .NET Framework Could Allow Denial of Service (2990931)
  • Vulnerability in Windows Task Scheduler Could Allow Elevation of Privilege (2988948)
  • Vulnerabilities in Microsoft Lync Server Could Allow Denial of Service (2990928)

Microsoft Security Bulletin Summary for September 2014

Microsoft Security Bulletin Summary for August 2014

Updates for August 2014:

  • Cumulative Security Update for Internet Explorer (2976627)
  • Vulnerability in Windows Media Center Could Allow Remote Code Execution (2978742)
  • Vulnerability in OneNote Could Allow Remote Code Execution (2977201)
  • Vulnerabilities in SQL Server Could Allow Elevation of Privilege (2984340)
  • Vulnerabilities in Kernel-Mode Drivers Could Allow Elevation Of Privilege (2984615)
  • Vulnerability in Windows Installer Service Could Allow Elevation of Privilege (2962490)
  • Vulnerability in Microsoft SharePoint Server Could Allow Elevation of Privilege (2977202)
  • Vulnerability in .NET Framework Could Allow Security Feature Bypass (2984625)
  • Vulnerability in LRPC Could Allow Security Feature Bypass (2978668)

Microsoft Security Bulletin Summary for August 2014

Microsoft Security Bulletin Summary for July 2014

Time to update those Microsoft products

  • Cumulative Security Update for Internet Explorer (2975687)
  • Vulnerability in Windows Journal Could Allow Remote Code Execution (2975689)
  • Vulnerability in On-Screen Keyboard Could Allow Elevation of Privilege (2975685)
  • Vulnerability in Ancillary Function Driver (AFD) Could Allow Elevation of Privilege (2975684)
  • Vulnerability in DirectShow Could Allow Elevation of Privilege (2975681)
  • Vulnerability in Microsoft Service Bus Could Allow Denial of Service (2972621)

Microsoft Security Bulletin Summary for July 2014

Microsoft Security Bulletin Summary for June 2014

Looks like some of those IE patches could be a problem, along with the vulnerability in Remote Desktop / Terminal Services

  • Cumulative Security Update for Internet Explorer (2969262)
  • Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execution (2967487)
  • Vulnerability in Microsoft Word Could Allow Remote Code Execution (2969261)
  • Vulnerability in Microsoft XML Core Services Could Allow Information Disclosure (2966061)
  • Vulnerability in Microsoft Lync Server Could Allow Information Disclosure (2969258)
  • Vulnerability in TCP Protocol Could Allow Denial of Service (2962478)
  • Vulnerability in Remote Desktop Could Allow Tampering (2969259)

Microsoft Security Bulletin Summary for June 2014