Microsoft Security Advisory Notification Issued: October 21, 2014

Security Bulletins / Advisories No Comments »
Security Advisories Updated or Released Today

* Microsoft Security Advisory (3010060)
– Title: Vulnerability in Microsoft OLE Could Allow Remote Code
Execution
– »technet.microsoft.com/library/se···/3010060
– Revision Note: V1.0 (October 21, 2014): Advisory published.

Microsoft Security Advisory Notification Issued: October 17, 2014

Security Bulletins / Advisories No Comments »
Security Advisories Updated or Released Today

* Microsoft Security Advisory (2949927)
– Title: Vulnerability in SSL 3.0 Could Allow Information
Disclosure
– »technet.microsoft.com/library/se···/2949927
– Revision Note: V2.0 (October 17, 2014): Removed Download Center
links for Microsoft security update 2949927. Microsoft recommends
that customers experiencing issues uninstall this update.
Microsoft is investigating behavior associated with this update,
and will update the advisory when more information becomes
available.

Microsoft Security Advisory Notification Issued: October 15, 2014

Security Bulletins / Advisories No Comments »
Security Advisories Updated or Released Today

* Microsoft Security Advisory (3009008)
– Title: Vulnerability in SSL 3.0 Could Allow Information
Disclosure
– »technet.microsoft.com/library/se···/3009008
– Revision Note: V1.1 (October 15, 2014): Advisory revised to
include a workaround for disabling the SSL 3.0 protocol in
Windows.

Microsoft Security Advisory Notification Issued: October 14, 2014

Security Bulletins / Advisories No Comments »
Security Advisories Updated or Released Today
* Microsoft Security Advisory (3009008)
– Title: Vulnerability in SSL 3.0 Could Allow Information
Disclosure
– »technet.microsoft.com/library/se···/3009008
– Revision Note: V1.0 (October 14, 2014): Advisory published.

Microsoft Security Advisory Notification Issued: October 14, 2014

Security Bulletins / Advisories No Comments »
Security Advisories Updated or Released Today

* Microsoft Security Advisory (2755801)
– Title: Update for Vulnerabilities in Adobe Flash Player in
Internet Explorer
– »technet.microsoft.com/library/se···/2755801
– Revision Note: V30.0 (October 14, 2014): Added the 3001237
update to the Current Update section.

* Microsoft Security Advisory (2871997)
– Title: Update to Improve Credentials Protection and Management
– »technet.microsoft.com/library/se···/2871997
– Revision Note: V4.0 (October 14, 2014): Rereleased advisory
to announce the release of updates that provide additional
protection for users credentials when logging on to a remote
host server. See Updates Related to this Advisory and Advisory
FAQ for details.

* Microsoft Security Advisory (2949927)
– Title: Availability of SHA-2 Hashing Algorithm for Windows 7
and Windows Server 2008 R2
– »technet.microsoft.com/library/se···/2949927
– Revision Note: V1.0 (October 14, 2014): Advisory published.

* Microsoft Security Advisory (2977292)
– Title: Update for Microsoft EAP Implementation that Enables
the Use of TLS
– »technet.microsoft.com/library/se···/2977292
– Revision Note: V1.0 (October 14, 2014): Advisory published.

Microsoft Security Bulletin Re-Releases Issued: October 14, 2014

Security Bulletins / Advisories No Comments »
Summary

The following bulletin has undergone a major revision increment.
Please see the appropriate bulletin for more details.

* MS14-042 – Moderate

Bulletin Information:

MS14-042 – Moderate

– »technet.microsoft.com/library/se···ms14-042
– Reason for Revision: V2.0 (October 14, 2014): Bulletin
rereleased to announce the offering of the security update
via Microsoft Update, in addition to the Download-Center-only
option that was provided when this bulletin was originally
released. Customers who have already successfully updated
their systems do not need to take any action.
– Originally posted: July 8, 2014
– Updated: October 14, 2014
– Bulletin Severity Rating: Important
– Version: 2.0

Microsoft Security Bulletin(s) for October 14, 2014, 2014

Security Bulletins / Advisories No Comments »
Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:
»technet.microsoft.com/library/se···ms14-oct

Critical (3)

Microsoft Security Bulletin MS14-056
Cumulative Security Update for Internet Explorer (2987107)
»technet.microsoft.com/library/se···ms14-056

Microsoft Security Bulletin MS14-057
Vulnerabilities in .NET Framework Could Allow Remote Code Execution (3000414)
»technet.microsoft.com/library/se···ms14-057

Microsoft Security Bulletin MS14-058
Vulnerability in Kernel-Mode Driver Could Allow Remote Code Execution (3000061)
»technet.microsoft.com/library/se···ms14-058

Important (5)

Microsoft Security Bulletin MS14-059
Vulnerability in ASP.NET MVC Could Allow Security Feature Bypass (2990942)
»technet.microsoft.com/library/se···ms14-059

Microsoft Security Bulletin MS14-060
Vulnerability in Windows OLE Could Allow Remote Code Execution (3000869)
»technet.microsoft.com/library/se···ms14-060

Microsoft Security Bulletin MS14-061
Vulnerability in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (3000434
»technet.microsoft.com/library/se···ms14-061

Microsoft Security Bulletin MS14-062
Vulnerability in Message Queuing Service Could Allow Elevation of Privilege (2993254)
»technet.microsoft.com/library/se···ms14-062

Microsoft Security Bulletin MS14-063
Vulnerability in FAT32 Disk Partition Driver Could Allow Elevation of Privilege (2998579)
»technet.microsoft.com/library/se···ms14-063

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

As always, download the updates only from the vendors website – visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.

Microsoft Security Bulletin Advance Notification – October 9, 2014

Security Bulletins / Advisories No Comments »
This is an advance notification of 9 security bulletins that Microsoft is intending to release on October 14, 2014.

3 rated as Critical, 1 rated as Moderate and 5 with a rating of Important.

https://technet.microsoft.com/library/security/ms14-oct

img

Microsoft Security Bulletin Minor Revisions Issued: October 8, 2014

Security Bulletins / Advisories No Comments »
Summary

The following bulletins have undergone a minor revision increment.
Please see the appropriate bulletin for more details.

* MS14-051 – Critical
* MS14-AUG

Bulletin Information:

MS14-051 – Critical

– »technet.microsoft.com/library/se···ms14-051
– Reason for Revision: V1.1 (October 8, 2014): Corrected the
severity table and vulnerability information to add CVE-2014-4145
as a vulnerability addressed by this update. This is an
informational change only. Customers who have already
successfully installed the update do not have to take any action.
– Originally posted: August 12, 2014
– Updated: October 8, 2014
– Bulletin Severity Rating: Critical
– Version: 1.1

MS14-AUG

– »technet.microsoft.com/library/se···ms14-aug
– Reason for Revision: V2.1 (October 8, 2014): For MS14-051, added
an Exploitability Assessment in the Exploitability Index for
CVE-2014-4145. This is an informational change only.
– Originally posted: August 12, 2014
– Updated: October 8, 2014
– Version: 2.1

Microsoft Security Bulletin Minor Revisions Issued: October 2, 2014

Security Bulletins / Advisories Comments Off
Summary

The following bulletin has undergone a minor revision increment.
Please see the appropriate bulletin for more details.

* MS14-030 – Important

Bulletin Information:

MS14-030 – Important

– »technet.microsoft.com/library/se···ms14-030
– Reason for Revision: V1.3 (October 2, 2014): Bulletin revised
to clarify the conditions under which Windows 7 editions are
affected. See the Update FAQ for more information.
– Originally posted: June 10, 2014
– Updated: October 2, 2014
– Bulletin Severity Rating: Important
– Version: 1.3

© 2014 DP's Security Bits.
WordPress Theme & Icons by N.Design Studio. Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs
Entries RSS Comments RSS Log in