Number: IRCNE2014122395
Date: 2014/12/13
According to “zdnet”, Microsoft has released their December security updates addressing 24 vulnerabilities in Windows, Internet Explorer, Exchange and Office. The bulletins released are:
- MS14-075: Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege (3009712(
- MS14-080: Cumulative Security Update for Internet Explorer (3008923) - This first update fixes 14 vulnerabilities affecting every supported version of the browser.
- MS14-081: Vulnerabilities in Microsoft Word and Microsoft Office Web Apps Could Allow Remote Code Execution (3017301)
- MS14-082: Vulnerability in Microsoft Office Could Allow Remote Code Execution (3017349)
- MS14-083: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (3017347)
- MS14-084: Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3016711)
- MS14-085: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126)
According to the Microsoft Malware Protection Center, the December version of the MSRT (Malicious Software Removal Tool) adds no new malware families, but does update the detection and remediation capabilities.
Microsoft also released 16 non-security updates to various versions of Windows, including a new set of language packs .
- 2