No Love for IT this February Patch Tuesday

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9
Next No Love for IT this February Patch Tuesday-2 Next

MS14-010 & MS14-011

The highest deployment priority for administrators should be MS14-010, a cumulative security update for Internet Explorer, and MS14-011, a vulnerability in VBScript Scripting Engine that could allow Remote Code Execution. MS14-010 addresses 25 vulnerabilities in Internet Explorer. Of these vulnerabilities, only one was publicly disclosed prior to today and none are known to be under active attack. The companion bulletin MS14-011 shares CVE-2014-0271 in common with MS14-010. When the Advance Notification was released last Thursday, Ernst was a bit surprised not to see an update for IE since the browser had not updated in January, either. But, it had been updated every month for at least a year prior to that. It’s possible Microsoft wanted to give some last-minute quality attention to the bulletin prior to release.

Microsoft was looking to deliver a light Patch Tuesday this month, but added two last-minute bulletins to the mix. February now includes seven bulletins, four critical and three important, that cover a total of 32 CVEs. The patches address vulnerabilities in Windows, Internet Explorer, Security Software and the .NET framework. Russ Ernst, director of product management at Lumension, takes a closer look at this February's Patch Tuesday.


Related Topics : Unisys, Stimulus Package, Security Breaches, Symantec, Electronic Surveillance

More Slideshows

blockchain The World According to Blockchain

Blockchain comes with many costs and is surrounded by confusion. Here, we examine realistic use cases, drawbacks and the potential of blockchain. ...  More >>

biometrics Biometrics: Moving Far Beyond Fingerprints

Biometrics are changing the way we think about security. Here are some of the more innovative ways biometrics are being used and what we can expect in the future. ...  More >>

Privacy rollback Security Pros Give Their Opinions on ISP Data Privacy Rollback

IT staff, organization leaders, and the average citizen have all expressed levels of concern over the FCC about-face in regard to ISP privacy. Here’s what the security experts say. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.