Tuesday, June 09, 2015

Microsoft Security Bulletin Release for June 2015


Microsoft released eight (8) bulletins.  Two (2) bulletins are identified as Critical and the remaining six (6) are rated Important in severity.

The updates address vulnerabilities in Microsoft Windows, Microsoft Office, Internet Explorer and Microsoft Exchange Server.  Details about the CVEs can be found in the below-referenced TechNet Security Bulletin.

Also released was one new Security Advisory:
One Security Advisory was revised for Windows 8.x:

Critical:
  • MS15-056 -- Cumulative Security Update for Internet Explorer (3049563)
  • MS15-057 -- Vulnerability in Windows Media Player Could Allow Remote Code Execution (3033890)
Important:
  • MS15-059 -- Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3064949)
  • MS15-060 -- Vulnerability in Microsoft Common Controls Could Allow Remote Code Execution (3059317)
  • MS15-061 -- Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (3057839)
  • MS15-062 -- Vulnerability in Active Directory Federation Services Could Allow Elevation of Privilege (3062577)
  • MS15-063 -- Vulnerability in Windows Kernel Could Allow Elevation of Privilege (3063858)
  • MS15-064 -- Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege (3062157)

Additional Update Notes

  • MSRT -- Microsoft released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center. 

  • Internet Explorer -- For additional information about the blocking of out-of-date ActiveX controls see the TechNet article, Out-of-date ActiveX control blocking.  Additional changes introduced this month include the blocking of outdated Silverlight.  Additional information is available in the IE Blog.

  • Windows 8.x -- Non-security new features and improvements for Windows 8.1 are now included with the second Tuesday of the month updates.  Additional information about this change is available here.

  • Windows XP -- Although Microsoft has stopped providing Microsoft Security Essentials for Windows XP, definitions will be available until July 15, 2015.  See Microsoft antimalware support for Windows XP.  The MSRT still works on Windows XP.

References




    Remember - "A day without laughter is a day wasted."
    May the wind sing to you and the sun rise in your heart...









    No comments: