Microsoft Security Bulletin Minor Revisions Issued: August 24, 2015

Security Bulletins / Advisories No Comments »
Summary

The following bulletins have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS15-092 – Important

Bulletin Information:

MS15-092 – Important

– Vulnerabilities in .NET Framework Could Allow Elevation of
Privilege (3086251)

– »technet.microsoft.com/li ··· 092.aspx
– Reason for Revision: V1.1 (August 24, 2015): Updated bulletin
to inform customers that on August 18, 2015, a metadata
change was implemented on Windows Update for the updates
documented in this bulletin. This is an informational change
only. There were no changes to the update files. Customers
who have already successfully updated their systems do not
need to take any action.
– Originally posted: August 11, 2015
– Updated: August 24, 2015
– Bulletin Severity Rating: Important
– Version: 1.1

Microsoft® Consumer Security MVP, 2004 – 2015
DP’s Security Bits

Microsoft Security Bulletin Minor Revisions Issued: August 21, 2015

Security Bulletins / Advisories No Comments »

Summary

The following bulletins have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS15-067 – Critical

Bulletin Information:

MS15-067 – Critical

– Title: Vulnerability in RDP Could Allow Remote Code Execution
(3073094)

https://technet.microsoft.com/library/security/ms15-067.aspx
– Reason for Revision: V1.1 (August 21, 2015): Improved the Update
FAQ section and the footnote for the Affected Software table to
help customers more easily identify the correct update to apply
based on the currently installed version of RDP on Windows 7
systems. These are informational changes only. Customers who
have already successfully applied the update do not need to take
any action. Customers who have not already installed the
necessary update should do so to be protected from the
vulnerability it addresses.
– Originally posted: July 14, 2015
– Updated: August 22, 2015
– Bulletin Severity Rating: Critical
– Version: 1.1

Microsoft Security Bulletin Releases Issued: August 21, 2015

Security Bulletins / Advisories No Comments »

Summary

The following bulletins have undergone a major revision increment.

* MS15-080 – Critical

Bulletin Information:

MS15-080 – Critical

– Title: Vulnerabilities in Microsoft Graphics Component Could
Allow Remote Code Execution (3078662)
https://technet.microsoft.com/library/security/ms15-080
– Reason for Revision: V2.0 (August 21, 2015): Updated bulletin
to inform customers running Windows Vista Service Pack 2,
Windows Server 2008 Service Pack 2, Windows Server 2008 R2
Service Pack 2, and Windows 7 Service Pack 1 that the 3078601
update on the Microsoft Download Center was updated on
August 18, 2015. Microsoft recommends that customers who
installed the 3078601 update via the Microsoft Download Center
prior to August 18 reinstall the update to be fully protected
from the vulnerabilities discussed in this bulletin.  If you
installed update 3078601 via Windows Update, Windows Update
Catalog, or WSUS, no action is required.
– Originally posted: August 11, 2015
– Updated: August 21, 2015
– Bulletin Severity Rating: Critical
– Version: 2.0

Microsoft Security Bulletin Minor Revisions Issued: August 20, 2015

Security Bulletins / Advisories No Comments »

Summary

The following bulletins have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS15-093 – Critical

Bulletin Information:

MS15-093 – Critical

Title: Security Update for Internet Explorer (3088903)

https://technet.microsoft.com/library/security/ms15-093.aspx
– Reason for Revision: V1.1 (August 20, 2015): Bulletin revised
to announce a detection change in the 3087985 update for
Internet Explorer. This is a detection change only. Customers
who have already successfully updated their systems do not
need to take any action.
– Originally posted: August 18, 2015
– Updated: August 20, 2015
– Bulletin Severity Rating: Critical
– Version: 1.1

Microsoft Security Bulletin MS15-093 – Critical (out of band)

Security Bulletins / Advisories No Comments »
Security Update for Internet Explorer (3088903)
Published: August 18, 2015

Version: 1.0

This security update resolves a vulnerability in Internet Explorer. The vulnerability could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
This security update is rated Critical for Internet Explorer 7 (IE 7), Internet Explorer 8 (IE 8), Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows clients, and Moderate for Internet Explorer 7 (IE 7), Internet Explorer 8 (IE 8), Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows servers. For more information, see the Affected Software section.
The security update addresses the vulnerability by modifying how Internet Explorer handles objects in memory.
For more information about the vulnerability, see the Vulnerability Information section.
For more information about this update, see Microsoft Knowledge Base Article 3088903.

»technet.microsoft.com/li ··· MS15-093

Microsoft Security Bulletin(s) for August 11, 2015

Security Bulletins / Advisories No Comments »

Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: »www.microsoft.com/techne ··· security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:
»technet.microsoft.com/li ··· ms15-aug

Critical (4)

Microsoft Security Bulletin MS15-079
Cumulative Security Update for Internet Explorer (3082442)
»technet.microsoft.com/li ··· ms15-079

Microsoft Security Bulletin MS15-080
Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execution (3078662)
»technet.microsoft.com/li ··· ms15-080

Microsoft Security Bulletin MS15-081
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3080790)
»technet.microsoft.com/li ··· ms15-081

Microsoft Security Bulletin MS15-091
Cumulative Security Update for Microsoft Edge (3084525)
»technet.microsoft.com/li ··· ms15-091

Important (10)

Microsoft Security Bulletin MS15-082
Vulnerabilities in RDP Could Allow Remote Code Execution (3080348)
»technet.microsoft.com/li ··· ms15-082

Microsoft Security Bulletin MS15-083
Vulnerability in Server Message Block Could Allow Remote Code Execution (3073921)
»technet.microsoft.com/li ··· ms15-083

Microsoft Security Bulletin MS15-084
Vulnerabilities in XML Core Services Could Allow Information Disclosure (3080129)
»technet.microsoft.com/li ··· ms15-084

Microsoft Security Bulletin MS15-085
Vulnerability in Mount Manager Could Allow Elevation of Privilege (3082487)
»technet.microsoft.com/li ··· ms15-085

Microsoft Security Bulletin MS15-086
Vulnerability in System Center Operations Manager Could Allow Elevation of Privilege (3075158)
»technet.microsoft.com/li ··· ms15-086

Microsoft Security Bulletin MS15-087
Vulnerability in UDDI Services Could Allow Elevation of Privilege (3082459)
»technet.microsoft.com/li ··· ms15-087

Microsoft Security Bulletin MS15-088
Unsafe Command Line Parameter Passing Could Allow Information Disclosure (3082458)
»technet.microsoft.com/li ··· ms15-088

Microsoft Security Bulletin MS15-089
Vulnerability in WebDAV Could Allow Information Disclosure (3076949)
»technet.microsoft.com/li ··· ms15-089

Microsoft Security Bulletin MS15-090
Vulnerabilities in Microsoft Windows Could Allow Elevation of Privilege (3060716)
»technet.microsoft.com/li ··· ms15-090

Microsoft Security Bulletin MS15-092
Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (3086251)
»technet.microsoft.com/li ··· ms15-092

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

As always, download the updates only from the vendors website – visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.

Microsoft Security Bulletin Releases : July 29, 2015

Security Bulletins / Advisories No Comments »
Summary

The following bulletins have undergone a major revision increment.

* MS15-074 – Important
* MS15-078 – Critical

Bulletin Information:

MS15-074 – Important

– Title: VVulnerability in Windows Installer Service Could Allow
Elevation of Privilege (3072630)
– »technet.microsoft.com/li ··· ms15-074
– Reason for Revision: V2.0 (July 29, 2015): Bulletin rereleased
to announce the availability of an update package for Windows
10 systems. Customers running Windows 10 should apply the
3074683 update to be protected from the vulnerability
discussed in this bulletin. The update is available via
Windows Update only. The majority of customers have
automatic updating enabled and will not need to take any
action because the update will be downloaded and installed
automatically.
– Originally posted: July 14, 2015
– Updated: July 29, 2015
– Bulletin Severity Rating: Important
– Version: 2.0

MS15-078 – Critical

– Title: Vulnerability in Microsoft Font Driver Could Allow
Remote Code Execution (3079904)
– »technet.microsoft.com/li ··· ms15-078
– Reason for Revision: V2.0 (July 29, 2015): Bulletin rereleased
to announce the availability of an update package for Windows
10 systems. Customers running Windows 10 should apply the
3074683 update to be protected from the vulnerability
discussed in this bulletin. The update is available via
Windows Update only. The majority of customers have
automatic updating enabled and will not need to take any
action because the update will be downloaded and installed
automatically.
– Originally posted: July 20, 2015
– Updated: July 29, 2015
– Bulletin Severity Rating: Critical
– Version: 2.0

Microsoft Security Bulletin Releases Issued: July 22, 2015

Security Bulletins / Advisories No Comments »

Summary

The following bulletins have undergone a major revision increment.

* MS15-006 – Important

Bulletin Information:

MS15-006 – Important

– Title: Vulnerability in Windows Error Reporting Could Allow
Security Feature Bypass (3004365)
https://technet.microsoft.com/library/security/ms15-006
– Reason for Revision: V2.0 (July 22, 2015): Bulletin revised to
inform customers of the July 14, 2015 reoffering of the 3004365
update for Windows 8.1 and Windows Server 2012 R2 systems. The
update provides defense-in-depth measures beyond what was
provided in the original update issued on January 13, 2015.
Customers running these operating systems who have already
successfully applied the update should reinstall the update
to be best protected from the vulnerability discussed in this
bulletin.
– Originally posted: January 13, 2015
– Updated: July 22, 2015
– Bulletin Severity Rating: Important
– Version: 2.0

MS15-078 (Released out-of-band on July 20, 2015)

Security Bulletins / Advisories No Comments »

MS15-078 (Released out-of-band on July 20, 2015)

MS15-078  Vulnerability in Microsoft Font Driver Could Allow Remote Code Execution (3079904)  Critical

https://technet.microsoft.com/en-us/library/security/ms15-jul.aspx

Microsoft Security Advisory Notification Issued: July 14, 2015

Security Bulletins / Advisories No Comments »

Security Advisories Updated or Released Today

* Microsoft Security Advisory (3057154)
– Title: Update to Harden Use of DES Encryption
https://technet.microsoft.com/library/security/3057154

* Microsoft Security Advisory (3074162)
– Title: Vulnerability in Microsoft Malicious Software Removal
Tool Could Allow Elevation of Privilege
https://technet.microsoft.com/library/security/3074162


© 2015 DP's Security Bits.
WordPress Theme & Icons by N.Design Studio. Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs
Entries RSS Comments RSS Log in