Microsoft Kicks Off Summer with Seven Patch Tuesday Bulletins

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10
Next Microsoft Kicks Off Summer with Seven Patch Tuesday Bulletins-7 Next

MS14-033: Important

MS14-033 is an information disclosure vulnerability in XML Core Services. Using other products, like IE, an attacker could unwittingly get someone to disclose the contents of different directories. An attacker would have to convince users to visit a website, typically by getting them to click a link in an email message or in an instant messenger request that takes users to the attacker's website.

Of the seven bulletins released for June Patch Tuesday, two are rated critical and five are rated important. All together, they cover a total of 66 CVEs, but one, MS14-035, remediates 59 of those CVEs. Yes, it’s time for another IE cumulative update and this should (again) be first on your list of patching priorities for June from Microsoft. Russ Ernst, director, product management at Lumension, provides a rundown on the patches for this month.

June Patch Summary

MS14-035: Cumulative Security Update for Internet Explorer (2969262)
Severity: Critical
Restart: Requires restart
Affects: Microsoft Windows, Internet Explorer

MS 14-036: Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execution (2967487)
Severity: Critical
Restart: Requires restart
Affects: Microsoft, Microsoft Office, Microsoft Lync

MS14-034: Vulnerability in Microsoft Word Could Allow Remote Code Execution (2969261)
Severity: Important
Restart: May require restart
Affects: Microsoft Office

MS14-033: Vulnerability in Microsoft XML Core Services Could Allow Information Disclosure (2966061)
Severity: Important
Restart: May require restart
Affects: Microsoft Windows

MS14-032: Vulnerability in Microsoft Lync Server Could Allow Information Disclosure (2969258)
Severity: Important
Restart: May require restart
Affects: Microsoft Lync Server

MS14-031: Vulnerability in TCP Protocol Could Allow Denial of Service (2962478)
Severity: Important
Restart: Requires restart
Affects: Microsoft Windows

MS14-030: Vulnerability in Remote Desktop Could Allow Tampering (2969259)
Severity: Important
Restart: May require restart
Affects: Microsoft Windows

 

Related Topics : Unisys, Stimulus Package, Security Breaches, Symantec, Electronic Surveillance

 
More Slideshows

Privacy rollback Security Pros Give Their Opinions on ISP Data Privacy Rollback

IT staff, organization leaders, and the average citizen have all expressed levels of concern over the FCC about-face in regard to ISP privacy. Here’s what the security experts say. ...  More >>

IT security skills 7 Top Skills for Security Pros

Executives at several top tech firms outline the skills they need now and in the near future, including IaaS and IoT security expertise. Other skills listed may surprise you. ...  More >>

IT security careers The Most In-Demand Security Jobs and How to Get Them

Security professionals are in demand right now, and entry-level security jobs generally fall into either an engineer or analyst role. Find out more about required skills and career paths. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.