MS15-074 - Important: Vulnerability in Windows Installer Service Could Allow Elevation of Privilege (3072630) - Version: 2.0

Severity Rating: ImportantRevision Note: V2.0 (July 29, 2015): Bulletin published.Summary: Bulletin rereleased to announce the availability of an update package for Windows 10 systems. Customers running Windows 10 should apply the 3074683 update to be protected from the vulnerability discussed in this bulletin. The update is available via Windows Update only. The majority of customers have automatic updating enabled and will not need to take any action because the update will be downloaded and installed automatically.

Posted by on 29 July 2015 | 2:00 am

MS15-078 - Critical: Vulnerability in Microsoft Font Driver Could Allow Remote Code Execution (3079904) - Version: 2.0

Severity Rating: CriticalRevision Note: V2.0 (July 29, 2015): Bulletin published.Summary: Bulletin rereleased to announce the availability of an update package for Windows 10 systems. Customers running Windows 10 should apply the 3074683 update to be protected from the vulnerability discussed in this bulletin. The update is available via Windows Update only. The majority of customers have automatic updating enabled and will not need to take any action because the update will be downloaded and installed automatically.

Posted by on 29 July 2015 | 2:00 am

MS15-069 - Important: Vulnerabilities in Windows Could Allow Remote Code Execution (3072631) - Version: 1.1

Severity Rating: ImportantRevision Note: V1.1 (July 29, 2015): Bulletin revised to correct the Desktop Experience footnote in the Affected Software section. The footnote had incorrectly applied to update 3070738 on Windows Server 2008 R2 when it should have applied to update 3067903 on Windows Server 2008 and Windows Server 2008 R2. Also added a footnote for the 3070738 update to clarify that only systems with RDP 8.1 installed are affected. These are informational changes only. Customers who have already successfully applied the updates do not need to take any action. Customers who have not already installed the necessary updates should do so to be protected from the vulnerability it addresses.Summary: This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow Remote Code Execution if an attacker first places a specially crafted dynamic link library (DLL) file in the target user’s current working directory and then convinces the user to open an RTF file or to launch a program that is designed to load a trusted DLL file but instead loads the attacker’s specially crafted DLL file. An attacker who successfully exploited the vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Posted by on 29 July 2015 | 2:00 am

MS15-006 - Important: Vulnerability in Windows Error Reporting Could Allow Security Feature Bypass (3004365) - Version: 2.0

Severity Rating: ImportantRevision Note: V2.0 (July 22, 2015): Bulletin revised to inform customers of the July 14, 2015 reoffering of the 3004365 update for Windows 8.1 and Windows Server 2012 R2 systems. The update provides defense-in-depth measures beyond what was provided in the original update issued on January 13, 2015. Customers running these operating systems who have already successfully applied the update should reinstall the update to be best protected from the vulnerability discussed in this bulletin.Summary: This security update resolves a privately reported vulnerability in Windows Error Reporting (WER). The vulnerability could allow security feature bypass if successfully exploited by an attacker. An attacker who successfully exploited this vulnerability could gain access to the memory of a running process. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Posted by on 22 July 2015 | 2:00 am

MS15-058 - Important: Vulnerabilities in SQL Server Could Allow Remote Code Execution (3065718) - Version: 1.1

Severity Rating: ImportantRevision Note: V1.1 (July 22, 2015): Bulletin revised to improve the Update FAQ section to help customers more easily identify the correct update to apply based on a currently installed version of SQL Server. This is an informational change only. Customers who have already successfully installed the update do not need to take any action.Summary: This security update resolves vulnerabilities in Microsoft SQL Server. The most severe vulnerabilities could allow remote code execution if an authenticated attacker runs a specially crafted query that is designed to execute a virtual function from a wrong address, leading to a function call to uninitialized memory. To exploit this vulnerability an attacker would need permissions to create or modify a database.

Posted by on 22 July 2015 | 2:00 am

MS15-065 - Critical: Security Update for Internet Explorer (3076321) - Version: 1.1

Severity Rating: CriticalRevision Note: V1.1 (July 22, 2015): Corrected the affected software entries for CVE-2015-1733 in the Severity Ratings and Vulnerability Identifiers table. This is an informational change only. Customers who have already successfully installed the update do not have to take any action.Summary: This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Posted by on 22 July 2015 | 2:00 am

MS15-072 - Important: Vulnerability in Windows Graphics Component Could Allow Elevation of Privilege (3069392) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if the Windows graphics component fails to properly process bitmap conversions. An authenticated attacker who successfully exploited this vulnerability could elevate privileges on a targeted system. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights. An attacker must first log on to the system to exploit this vulnerability.

Posted by on 14 July 2015 | 2:00 am

MS15-073 - Important: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (3070102) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application.

Posted by on 14 July 2015 | 2:00 am

MS15-066 - Critical: Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3072604) - Version: 1.0

Severity Rating: CriticalRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves a vulnerability in the VBScript scripting engine in Microsoft Windows. The vulnerability could allow remote code execution if a user visits a specially crafted website. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Posted by on 14 July 2015 | 2:00 am

MS15-071 - Important: Vulnerability in Netlogon Could Allow Elevation of Privilege (3068457) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker who is logged on to a domain-joined system runs a specially crafted application that could establish a connection with other domain-joined systems as the impersonated user or system. The attacker must be logged on to a domain-joined system and be able to observe network traffic.

Posted by on 14 July 2015 | 2:00 am

MS15-067 - Critical: Vulnerability in RDP Could Allow Remote Code Execution (3073094) - Version: 1.0

Severity Rating: CriticalRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sends a specially crafted sequence of packets to a targeted system with Remote Desktop Protocol (RDP) enabled. By default, RDP is not enabled on any Windows operating system. Systems that do not have RDP enabled are not at risk.

Posted by on 14 July 2015 | 2:00 am

MS15-076 - Important: Vulnerability in Windows Remote Procedure Call Could Allow Elevation of Privilege (3067505) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability, which exists in Windows Remote Procedure Call (RPC) authentication, could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. An attacker who successfully exploited this vulnerability could take complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Posted by on 14 July 2015 | 2:00 am

MS15-070 - Important: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3072620) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Office. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Posted by on 14 July 2015 | 2:00 am

MS15-068 - Critical: Vulnerabilities in Windows Hyper-V Could Allow Remote Code Execution (3072000) - Version: 1.0

Severity Rating: CriticalRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves vulnerabilities in Windows Hyper-V. The vulnerabilities could allow remote code execution in a host context if a specially crafted application is run by an authenticated and privileged user on a guest virtual machine hosted by Hyper-V. An an attacker must have valid logon credentials for a guest virtual machine to exploit this vulnerability.

Posted by on 14 July 2015 | 2:00 am

MS15-075 - Important: Vulnerabilities in OLE Could Allow Elevation of Privilege (3072633) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if used in conjunction with another vulnerability that allows arbitrary code to be run. Once the other vulnerability has been exploited, an attacker could then exploit the vulnerabilities addressed in this bulletin to cause arbitrary code to run at a medium integrity level.

Posted by on 14 July 2015 | 2:00 am

MS15-077 - Important: Vulnerability in ATM Font Driver Could Allow Elevation of Privilege (3077657) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (July 14, 2015): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a target system and runs a specially crafted application. An attacker who successfully exploited this vulnerability could execute arbitrary code and take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Posted by on 14 July 2015 | 2:00 am

MS15-049 - Important: Vulnerability in Silverlight Could Allow Elevation of Privilege (3058985) - Version: 1.1

Severity Rating: ImportantRevision Note: V1.1 (June 23, 2015): Bulletin published.Summary: Bulletin revised to announce a detection change in the 3056819 update for Microsoft Silverlight 5. This is a detection change only. Customers who have already successfully updated their systems do not need to take any action.

Posted by on 23 June 2015 | 2:00 am

MS15-044 - Critical: Vulnerabilities in Microsoft Font Drivers Could Allow Remote Code Execution (3057110) - Version: 2.1

Severity Rating: CriticalRevision Note: V2.1 (June 23, 2015): V2.1 (June 23, 2015): Bulletin revised to announce a detection change in the 3056819 update for Microsoft Silverlight 5. This is a detection change only. Customers who have already successfully updated their systems do not need to take any action.Summary: This security update resolves vulnerabilities in Microsoft Windows, Microsoft .NET Framework, Microsoft Office, Microsoft Lync, and Microsoft Silverlight. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits an untrusted webpage that contains embedded TrueType fonts.

Posted by on 23 June 2015 | 2:00 am

MS14-051 - Critical: Cumulative Security Update for Internet Explorer (2976627) - Version: 1.4

Severity Rating: CriticalRevision Note: V1.4 (June 17, 2015): Replaced CVE number CVE-2014-4078 with CVE number CVE-2014-8985. This is an informational change only. The CVE description was not changed. Customers who have already successfully installed the update do not need to take any action.Summary: This security update resolves one publicly disclosed and twenty-five privately reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Posted by on 17 June 2015 | 2:00 am

MS15-048 - Important: Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (3057134) - Version: 1.1

Severity Rating: ImportantRevision Note: V1.1 (June 17, 2015): Corrected bulletin replacement for the 3035488 update for .NET Framework 2.0 on all affected editions of Windows Server 2003 Service Pack 2.Summary: This security update resolves vulnerabilities in Microsoft .NET Framework. The most severe of the vulnerabilities could allow elevation of privilege if an attacker sends specially crafted data to a WinForms application running in partial trust.

Posted by on 17 June 2015 | 2:00 am

MS15-057 - Critical: Vulnerability in Windows Media Player Could Allow Remote Code Execution (3033890) - Version: 1.0

Severity Rating: CriticalRevision Note: V1.0 (June 9, 2015): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if Windows Media Player opens specially crafted media content that is hosted on a malicious website. An attacker who successfully exploited this vulnerability could take complete control of an affected system remotely. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Posted by on 9 June 2015 | 2:00 am

MS15-046 - Important: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3057181) - Version: 3.0

Severity Rating: ImportantRevision Note: V3.0 (June 9, 2015): To address issues with the security updates for all affected Microsoft Office 2010 software, Microsoft re-released MS15-046 to comprehensively address CVE-2015-1682. Microsoft recommends that customers running affected Office 2010 software should install the security updates released with this bulletin revision to be fully protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See Microsoft Knowledge Base Article 3057181 for more information and download links.Summary: This security update resolves vulnerabilities in Microsoft Office. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Posted by on 9 June 2015 | 2:00 am

MS15-059 - Important: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3064949) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (June 9, 2015): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Office. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Posted by on 9 June 2015 | 2:00 am

MS15-063 - Important: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (3063858) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (June 9, 2015): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker places a malicious .dll file in a local directory on the machine or on a network share. An attacker would then have to wait for a user to run a program that can load a malicious .dll file, resulting in elevation of privilege. However, in all cases an attacker would have no way to force a user to visit such a network share or website.

Posted by on 9 June 2015 | 2:00 am

MS15-060 - Important: Vulnerability in Microsoft Common Controls Could Allow Remote Code Execution (3059317) - Version: 1.0

Severity Rating: ImportantRevision Note: V1.0 (June 9, 2015): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user clicks a specially crafted link, or a link to specially crafted content, and then invokes F12 Developer Tools in Internet Explorer.

Posted by on 9 June 2015 | 2:00 am