Patch Tuesday Wednesday (Mar-2015)

patch-tuesday This month Microsoft have released fourteen (14) security bulletins of which five (5) have a maximum rating of Critical and nine (9) have a maximum rating of Important.

❝ Today, as part of Update Tuesday, we released 14 security bulletins to address vulnerabilities in Microsoft Windows, Microsoft Office, Microsoft Exchange, and Internet Explorer. ❞ [1]

Bulletin KB number Description Impact / Severity Software
MS15-018 3032359 Cumulative Security Update for Internet Explorer Critical:
Remote Code Execution
Microsoft Windows, Internet Explorer
MS15-019 3040297 Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution Critical:
Remote Code Execution
Microsoft Windows
MS15-020 3041836 Vulnerabilities in Microsoft Windows Could Allow Remote Code Execution Critical:
Remote Code Execution
Microsoft Windows
MS15-021 3032323 Vulnerabilities in Adobe Font Driver Could Allow Remote Code Execution Critical:
Remote Code Execution
Microsoft Windows
MS15-022 3038999 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution Critical:
Remote Code Execution
Microsoft Office, Microsoft Server Software
MS15-023 3034344 Vulnerabilities in Kernel-Mode Driver Could Allow Elevation of Privilege Important:
Elevation of Privilege
Microsoft Windows
MS15-024 3035132 Vulnerability in PNG Processing Could Allow Information Disclosure Important:
Information Disclosure
Microsoft Windows
MS15-025 3038680 Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege Important:
Elevation of Privilege
Microsoft Windows
MS15-026 3040856 Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege () Important:
Elevation of Privilege
Microsoft Exchange
MS15-027 3002657 Vulnerability in NETLOGON Could Allow Spoofing Important:
Spoofing
Microsoft Windows
MS15-028 3030377 Vulnerability in Windows Task Scheduler Could Allow Security Feature Bypass Important:
Security Feature Bypass
Microsoft Windows
MS15-029 3035126 Vulnerability in Windows Photo Decoder Component Could Allow Information Disclosure Important:
Information Disclosure
Microsoft Windows
MS15-030 3039976 Vulnerability in Remote Desktop Protocol Could Allow Denial of Service Important:
Denial of Service
Microsoft Windows
MS15-031 30460498 Vulnerability in Schannel Could Allow Security Feature Bypass Important:
Security Feature Bypass
Microsoft Windows

PATCH NOW:
* MS15-018, MS15-020
* MS15-027 exploit is available
* MS15-031 exploit is available

LINKS:
[1.] March 2015 Updates (2015-Mar-10) [MS: MSRC]
[2.] Microsoft March Patch Tuesday (2015-Mar-10) [SANS]
[3.] Microsoft Security Bulletin Summary for March 2015 (2015-Mar-10) [MS]
Advertisements
This entry was posted in microsoft, patch, Patch_Tuesday, security. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s