Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93105 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

MS Security Bulletin Summary - May 2014


  • Please log in to reply
3 replies to this topic

#1 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • Authentic Member
  • PipPipPipPipPipPipPip
  • 10,472 posts
  • Interests:... The never-ending battle for Truth, Justice, and the American way.

Posted 13 May 2014 - 01:41 PM

FYI...

- https://technet.micr...curity/ms14-may
May 13, 2014 Ver: 2.0 - "This bulletin summary lists security bulletins released for May 2014...
(Total of -8-)

Microsoft Security Bulletin MS14-029 - Critical
Security Update for Internet Explorer (2962482)
- https://technet.micr...curity/ms14-029
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer
- https://web.nvd.nist...d=CVE-2014-0310 - 9.3 (HIGH)
- https://web.nvd.nist...d=CVE-2014-1815 - 9.3 (HIGH)
Last revised: 05/14/2014 - "... as exploited in the wild in May 2014..."

Microsoft Security Bulletin MS14-022 - Critical
Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2952166)
- https://technet.micr...curity/ms14-022
Critical - Remote Code Execution - May require restart - Microsoft Server Software, Productivity Software

Microsoft Security Bulletin MS14-023 - Important
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2961037)
- https://technet.micr...curity/ms14-023
Important - Remote Code Execution - May require restart - Microsoft Office

Microsoft Security Bulletin MS14-025 - Important
Vulnerability in Group Policy Preferences Could Allow Elevation of Privilege (2962486)
- https://technet.micr...curity/ms14-025
Important - Elevation of Privilege - May require restart - Microsoft Windows

Microsoft Security Bulletin MS14-026 - Important
Vulnerability in .NET Framework Could Allow Elevation of Privilege (2958732)
- https://technet.micr...curity/ms14-026
Important - Elevation of Privilege - May require restart - Microsoft Windows, Microsoft .NET Framework

Microsoft Security Bulletin MS14-027 - Important
Vulnerability in Windows Shell Handler Could Allow Elevation of Privilege (2962488)
- https://technet.micr...curity/ms14-027
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS14-028 - Important
Vulnerabilities in iSCSI Could Allow Denial of Service (2962485)
- https://technet.micr...curity/ms14-028
Important - Denial of Service - May require restart - Microsoft Windows

Microsoft Security Bulletin MS14-024 - Important
Vulnerability in a Microsoft Common Control Could Allow Security Feature Bypass (2961033)
- https://technet.micr...curity/ms14-024
Important - Security Feature Bypass - May require restart - Microsoft Office
___

- http://blogs.technet...ty-updates.aspx
13 May 2014

Assessing risk for the May 2014 security updates
- http://blogs.technet...ty-updates.aspx
13 May 2014
___

May 2014 Office Update
- http://blogs.technet...te-release.aspx
13 May 2014 - "There are 31 security updates (3 bulletins*) and 30 non-security updates..."

* MS14-022, MS14-023, MS14-024

___

- http://www.securityt....com/id/1030227 - MS14-022
- http://www.securityt....com/id/1030230 - MS14-023
- http://www.securityt....com/id/1030235 - MS14-024
- http://www.securityt....com/id/1030231 - MS14-025
- http://www.securityt....com/id/1030232 - MS14-026
- http://www.securityt....com/id/1030233 - MS14-027
- http://www.securityt....com/id/1030234 - MS14-028
- http://www.securityt....com/id/1030224 - MS14-029
___

ISC Analysis
- https://isc.sans.edu...l?storyid=18113
Last Updated: 2014-05-13 17:23:09 UTC
___

Patch Tuesday Updates: Microsoft, Adobe
... Malicious actors often use security updates to write their own exploits targeting unpatched systems
- http://atlas.arbor.net/briefs/
Extreme Severity
May 16, 2014

.


Edited by AplusWebMaster, 29 May 2014 - 04:54 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

    Advertisements

Register to Remove


#2 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • Authentic Member
  • PipPipPipPipPipPipPip
  • 10,472 posts
  • Interests:... The never-ending battle for Truth, Justice, and the American way.

Posted 14 May 2014 - 03:20 PM

FYI...

Problems with 'revoked UEFI module' patches KB 2920189 and 2962824
- http://www.infoworld...-2962824-242533
May 14, 2014

Microsoft Security Advisory 2962824
Update Rollup of Revoked Non-Compliant UEFI Modules
- https://support.micr....com/kb/2962824
May 13, 2014 - Rev: 2.0

- https://support.micr....com/kb/2920189
Last Review: May 13, 2014 - Rev: 2.0
___

- http://windowssecret...-2013-continue/
May 14, 2014- "... concentrate on the security updates and leave most of the nonsecurity fixes for later..."
 

:ph34r:


Edited by AplusWebMaster, 15 May 2014 - 07:24 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.


#3 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • Authentic Member
  • PipPipPipPipPipPipPip
  • 10,472 posts
  • Interests:... The never-ending battle for Truth, Justice, and the American way.

Posted 17 May 2014 - 06:56 AM

FYI...

MS acknowledges more errors, 80070371 and 80071A91 - installing Win8.1 Update - KB 2919355
- http://www.infoworld...kb-2919355-2426
May 16, 2014

- https://support.micr....com/kb/2919355
Last Review: May 16, 2014 - Rev: 21.0
___

Security Bulletin Webcast Q&A
- http://blogs.technet...lletin-q-a.aspx
May 14, 2014
 

:ph34r:  :(


Edited by AplusWebMaster, 17 May 2014 - 07:13 PM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.


#4 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • Authentic Member
  • PipPipPipPipPipPipPip
  • 10,472 posts
  • Interests:... The never-ending battle for Truth, Justice, and the American way.

Posted 28 May 2014 - 09:36 AM

FYI...

Win8.1 update ...
- https://support.micr....com/kb/2919355
May 30, 2014 - Rev: 23.0
Last Review: June 4, 2014 - Rev: 24.0
___

Cleaning up May’s Windows and Office updates
- http://windowssecret...office-updates/
June 4, 2014
___

Overview of KB2871997
- http://blogs.technet...-kb2871997.aspx
5 Jun 2014

- https://support.micr...1997#FixItForMe
Last Review: June 5, 2014 - Rev: 4.0
Microsoft Fix it 20141 - "... This Fix it solution changes the UseLogonCredentials registry key to disable WDigest passwords from being stored in memory. After you install security update 2871997 and then apply this Fix it solution to systems that are running Windows 7, Windows Server 2008 R2, Windows 8, or Windows Server 2012, you should no longer have clear-text credentials stored in memory.
Note: This Fix it solution will take effect only if security update 2871997 is installed..."

:ph34r:  :(


Edited by AplusWebMaster, 05 June 2014 - 03:58 PM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users