Categories
Computer & Network Security>Microsoft|Computer & Network Security>Microsoft Security Bulletin

Microsoft Security Bulletin: May 2014

Critical Updates: 3

Important Updates: 6

Of the 3 critical updates, all three are likely exploitable according to Microsoft.  Our recommendation is to install all three patches, one of which is the recent out-of-band patch for the Internet Explorer zero-day.  Note: Some of these updates do require a restart.

Some of the vulnerabilities, such as one for Microsoft SharePoint Server, have a more limited scope than those targeting IE, such as the updates that address memory corruption vulnerabilities in Internet Explorer. These are more likely to be exploited and will impact many more devices.

For more information: https://technet.microsoft.com/library/security/ms14-may

 

 

Categories
Computer & Network Security>Microsoft|Computer & Network Security>Microsoft Security Bulletin

March 2014 Microsoft Security Bulletin Release

For this month’s round of patches Microsoft has released five new security bulletins, two of which are for critical vulnerabilities.  The first critical update is a cumulative security update which resolves numerous vulnerabilities that could allow remote code execution in both workstation and server operating systems.  The second update is an update specifically for Microsoft DirectShow which could also allow remote code execution in both workstation and server operating systems.

In addition to the security bulletins, Microsoft also released an updated version of the Microsoft Windows Malicious Software Removal Tool, and re-released a security advisory update for vulnerabilities in Adobe Flash Player running in Internet Explorer.

Microsoft recommends that customers apply these updates immediately using update management software, or by checking for updates using the Microsoft Update service.

Source: http://technet.microsoft.com/en-us/security/bulletin/ms14-mar