Technical Discussion
  >> Windows Issues


Register (or login) on our website and you will not see this ad.


  Print Thread
Standard User NICK_ADSL_UK
(fountain of knowledge) Tue 11-Aug-15 18:56:15
Print Post

Microsoft Security Bulletin(s) for august 11 2015


[link to this post]
 
Microsoft Security Bulletin(s) for august 11 2015
Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).
Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:
https://technet.microsoft.com/en-us/library/security...

Critical (4)
Cumulative Security Update for Internet Explorer (3082442)

http://go.microsoft.com/fwlink/?LinkID=619622

Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execution (3078662)
http://go.microsoft.com/fwlink/?LinkId=619676

Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3080790)
http://go.microsoft.com/fwlink/?LinkId=619678

Cumulative Security Update for Microsoft Edge (3084525)
http://go.microsoft.com/fwlink/?LinkId=620118

Important (10)
Vulnerabilities in RDP Could Allow Remote Code Execution (3080348

http://go.microsoft.com/fwlink/?LinkId=619679

Vulnerability in Server Message Block Could Allow Remote Code Execution (3073921)
http://go.microsoft.com/fwlink/?LinkId=619627

Vulnerabilities in XML Core Services Could Allow Information Disclosure (3080129)
http://go.microsoft.com/fwlink/?LinkId=619680

Vulnerability in Mount Manager Could Allow Elevation of Privilege (3082487)
http://go.microsoft.com/fwlink/?LinkId=619646

Vulnerability in System Center Operations Manager Could Allow Elevation of Privilege (3075158
http://go.microsoft.com/fwlink/?LinkId=616872

Vulnerability in UDDI Services Could Allow Elevation of Privilege (3082459)
http://go.microsoft.com/fwlink/?LinkId=619633

Unsafe Command Line Parameter Passing Could Allow Information Disclosure (3082458
http://go.microsoft.com/fwlink/?LinkId=619632

Vulnerability in WebDAV Could Allow Information Disclosure (3076949)
http://go.microsoft.com/fwlink/?LinkId=619647

Vulnerabilities in Microsoft Windows Could Allow Elevation of Privilege (3060716)
http://go.microsoft.com/fwlink/?LinkId=619649

Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (3086251)
http://go.microsoft.com/fwlink/?LinkId=620204

Moderate (0)
Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact For home users, no-charge support for security updates (only!) is available by calling 800-MICROSOFT (800-642-7676) in the US or 877-568-2495 in Canada.
As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.
Security Tool
Find out if you are missing important Microsoft product updates by using MBSA

Wilders Security Admin
Microsoft MVP - Consumer Security


For the latest in virus software signatures
From the Security specialists
Wilders security

Keep Your Security /Software Current
Upgrades, Updates & Definitions
Major Geeks

Microsoft Security Advisories
Twitter

Standard User NICK_ADSL_UK
(fountain of knowledge) Tue 11-Aug-15 23:09:26
Print Post

Re: Microsoft Security Bulletin(s) for august 11 2015


[re: NICK_ADSL_UK] [link to this post]
 
MS15-081: Description of the security update for the 2007 Microsoft Office Suite: August 11, 2015

Summary
This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS15-081.

Note To apply this security update, you must have the release version of Service Pack 3 for the 2007 Microsoft Office Suite installed on the computer.

For a complete list of affected versions of Microsoft Office software, see KB3080790.
Known issues

Starting on August 12, 2015, users of the 2007 Microsoft Office system who do not have the update installed will no longer be able to access online templates. Instead, when they try to access online templates, a single template thumbnail appears together with text that tells them to update Office to regain access to templates. For more information, see http://aka.ms/2007. Be aware that 2007 Microsoft Office system users who do not have this update installed are still vulnerable. This is true even when it seems that they do not have access to online templates.

To try to access online templates in the 2007 Microsoft Office system, click the Office button, click New, and then either select an online templates category or search for templates.

Although users of Office 2010 and Office 2013 who have not have the update installed will not lose access to online templates, those customers are still vulnerable. Therefore, we strongly recommend that they install the updates.

https://support.microsoft.com/en-us/kb/2596650

Wilders Security Admin
Microsoft MVP - Consumer Security


For the latest in virus software signatures
From the Security specialists
Wilders security

Keep Your Security /Software Current
Upgrades, Updates & Definitions
Major Geeks

Microsoft Security Advisories
Twitter

Standard User NICK_ADSL_UK
(fountain of knowledge) Tue 18-Aug-15 22:56:58
Print Post

Re: Microsoft Security Bulletin(s) for august 11 2015


[re: NICK_ADSL_UK] [link to this post]
 
Microsoft Security Bulletin MS15-093 - Critical

Security Update for Internet Explorer (3088903)
Published: August 18, 2015
Version:1.0

[Executive Summary]
This security update resolves a vulnerability in Internet Explorer. The vulnerability could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
This security update is rated Critical for Internet Explorer 7 (IE 7), Internet Explorer 8 (IE 8 Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows clients, and Moderate for Internet Explorer 7 (IE 7), Internet Explorer 8 (IE 8 Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows servers. For more information, see theAffected Softwaresection.
The security update addresses the vulnerability by modifying how Internet Explorer handles objects in memory.
For more information about the vulnerability, see theVulnerability Informationsection.
Microsoft Knowledge Base Article 3088903.
https://support.microsoft.com/kb/3088903

Wilders Security Admin
Microsoft MVP - Consumer Security


For the latest in virus software signatures
From the Security specialists
Wilders security

Keep Your Security /Software Current
Upgrades, Updates & Definitions
Major Geeks

Microsoft Security Advisories
Twitter


Register (or login) on our website and you will not see this ad.

Standard User NICK_ADSL_UK
(fountain of knowledge) Sat 22-Aug-15 11:15:05
Print Post

Re: Microsoft Security Bulletin(s) for august 11 2015


[re: NICK_ADSL_UK] [link to this post]
 
Microsoft Security Bulletin Minor Revisions Issued: August 20, 2015
Summary

The following bulletins have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS15-093 - Critical

Bulletin Information:

MS15-093 - Critical
- Title: Security Update for Internet Explorer (3088903)

- »technet.microsoft.com/li ··· 093.aspx
- Reason for Revision: V1.1 (August 20, 2015): Bulletin revised
to announce a detection change in the 3087985 update for
Internet Explorer. This is a detection change only. Customers
who have already successfully updated their systems do not
need to take any action.
- Originally posted: August 18, 2015
- Updated: August 20, 2015
- Bulletin Severity Rating: Critical
- Version: 1.1


Wilders Security Admin
Microsoft MVP - Consumer Security


For the latest in virus software signatures
From the Security specialists
Wilders security

Keep Your Security /Software Current
Upgrades, Updates & Definitions
Major Geeks

Microsoft Security Advisories
Twitter

Edited by NICK_ADSL_UK (Sat 22-Aug-15 11:15:35)

Standard User NICK_ADSL_UK
(fountain of knowledge) Sat 22-Aug-15 11:16:14
Print Post

Re: Microsoft Security Bulletin(s) for august 11 2015


[re: NICK_ADSL_UK] [link to this post]
 
********************************************************************
Title: Microsoft Security Bulletin Releases
Issued: August 21, 2015
********************************************************************

Summary
=======

The following bulletins have undergone a major revision increment.

* MS15-080 - Critical


Bulletin Information:
=====================

MS15-080 - Critical

- Title: Vulnerabilities in Microsoft Graphics Component Could
Allow Remote Code Execution (3078662)
- https://technet.microsoft.com/library/security/ms15-080
- Reason for Revision: V2.0 (August 21, 2015): Updated bulletin
to inform customers running Windows Vista Service Pack 2,
Windows Server 2008 Service Pack 2, Windows Server 2008 R2
Service Pack 2, and Windows 7 Service Pack 1 that the 3078601
update on the Microsoft Download Center was updated on
August 18, 2015. Microsoft recommends that customers who
installed the 3078601 update via the Microsoft Download Center
prior to August 18 reinstall the update to be fully protected
from the vulnerabilities discussed in this bulletin. If you
installed update 3078601 via Windows Update, Windows Update
Catalog, or WSUS, no action is required.
- Originally posted: August 11, 2015
- Updated: August 21, 2015
- Bulletin Severity Rating: Critical
- Version: 2.0

Wilders Security Admin
Microsoft MVP - Consumer Security


For the latest in virus software signatures
From the Security specialists
Wilders security

Keep Your Security /Software Current
Upgrades, Updates & Definitions
Major Geeks

Microsoft Security Advisories
Twitter

  Print Thread

Jump to