Wednesday, 11 February 2015

Microsoft Patches 56 Vulnerabilities In Windows, IE and Office

During the Patch Tuesday in February, Microsoft has nine updates that released a total of 56 vulnerabilities in Windows, Office, Internet Explorer and Microsoft Server software fix. Three of the patches as critical, while the remaining six were labeled as important.

The three critical updates for Windows Kernel Mode Driver, Windows Group Policy and IE and give an attacker the ability to take the operating system in the worst case completely. Most leaks were this patch Tuesday patched in Internet Explorer.Security Bulletin MS15-009 namely fixes 41 vulnerabilities. Of these leaks, there was one already made ​​public before the update appeared. However, Microsoft has not observed attacks who abuse the leak.

This is different in the case of another leak that resolves MS15-009. This is a vulnerability to bypass ASLR protection of IP.An attacker would have to combine this vulnerability with another leak to perform an attack. In the case of Office are three vulnerabilities in the past. These vulnerabilities allowed an attacker to execute arbitrary code on the computer when a malicious Office file was opened. All nine security updates using Windows Update to download.

No comments:

Post a Comment