Microsoft Security Bulletins for august 12 2014

Microsoft Security Bulletins for august 12 2014
Note: There may be latency issues due to replication, if the page does not display keep refreshing
Today Microsoft released the following Security Bulletin(s).

Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:
https://technet.microsoft.com/library/security/ms14-aug

Critical (2)
Microsoft Security Bulletin MS14-051
Cumulative Security Update for Internet Explorer (2976627)
https://technet.microsoft.com/library/security/ms14-051

Microsoft Security Bulletin MS14-043
Vulnerability in Windows Media Center Could Allow Remote Code Execution (2978742)
https://technet.microsoft.com/library/security/ms14-043

Important (7)
Microsoft Security Bulletin MS14-048
Vulnerability in OneNote Could Allow Remote Code Execution (2977201)
https://technet.microsoft.com/library/security/ms14-048

Microsoft Security Bulletin MS14-044
Vulnerabilities in SQL Server Could Allow Elevation of Privilege (2984340)
https://technet.microsoft.com/library/security/ms14-044

Microsoft Security Bulletin MS14-045
Vulnerabilities in Kernel-Mode Drivers Could Allow Elevation Of Privilege (2984615)
https://technet.microsoft.com/library/security/ms14-045

Microsoft Security Bulletin MS14-049
Vulnerability in Windows Installer Service Could Allow Elevation of Privilege (2962490)
https://technet.microsoft.com/library/security/ms14-049

Microsoft Security Bulletin MS14-050
Vulnerability in Microsoft SharePoint Server Could Allow Elevation of Privilege (2977202)
https://technet.microsoft.com/library/security/ms14-050

Microsoft Security Bulletin MS14-046
Vulnerability in .NET Framework Could Allow Security Feature Bypass (2984625)
https://technet.microsoft.com/library/security/ms14-046

Microsoft Security Bulletin MS14-047
Vulnerability in LRPC Could Allow Security Feature Bypass 297866
https://technet.microsoft.com/library/security/ms14-047

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact For home users, no-charge support for security updates (only!) is available by calling 800-MICROSOFT (800-642-7676) in the US or 877-568-2495 in Canada.
As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.
Security Tool
Find out if you are missing important Microsoft product updates by using MBSA

I got all the updates installed on a win7 sp1 pc.
In spite of already having SP1 already installed, one of the critical updates was Windows Service Pack 1 (KB976932) size 2MB iirc. Any idea what this update is?

In reply to a post by petsy:

I got all the updates installed on a win7 sp1 pc.
In spite of already having SP1 already installed, one of the critical updates was Windows Service Pack 1 (KB976932) size 2MB iirc. Any idea what this update is?

It is most probably a failure of one of the files relating to the service pack
it's always best to check once a month with Microsoft Baseline Security Analyzer to make sure all is up to date and correct

http://technet.microsoft.com/en-us/security/cc184924...

Belarc Advisor is also a good tool to make sure that the whole computer is up to date and that you can recognize any odd application that may be present and take advice if needed


http://www.belarc.com/free_download.html

Can Microsoft Baseline Security Analyzer be run on a stand alone home PC?

In reply to a post by cheshire_man:

Can Microsoft Baseline Security Analyzer be run on a stand alone home PC?

yes Tony

It would help if the Baseline Analyser would tell you which software updates were not completed - how do you find out ?

In reply to a post by MrTAToad2:

It would help if the Baseline Analyser would tell you which software updates were not completed - how do you find out ?

Baseline Analyser only deals with the Microsoft updates along with your security settings and how to rectify any shortfalls

Belarc Advisor will tell you what security updates like adobe etc that may be missing from your computer

it is always best to use both on a monthly basis so you are always up to date

Edited by NICK_ADSL_UK (Sun 17-Aug-14 00:35:16)