It’s Microsoft Patch Tuesday! In the March edition there are 14 updates; five are marked "Critical" and nine are rated "Important". A total of 45 vulnerabilities were fixed over 14 bulletins this month. One of the Critical update MS15-018 is an all version Internet Explorer (IE 6 to 11) patch. This single update resolves 12 CVE's (Common Vulnerability and Exposure) and is the highest profile bulletin of the month.
Here is a list of Security bulletins which were rolled out in today's Patch Tuesday release.
Cumulative Security Update for Internet Explorer
Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution
Vulnerability in Windows Shell Could Allow Remote Code Execution
Vulnerabilities in Adobe Font Driver Could Allow Remote Code Execution
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution
Vulnerabilities in Kernel-Mode Driver Could Allow Elevation of Privilege
Vulnerability in PNG Processing Could Allow Information Disclosure
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege
Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege
Vulnerability in NETLOGON Could Allow Spoofing
Vulnerability in Windows Task Scheduler Could Allow Security Feature Bypass
Vulnerability in Windows Photo Decoder Component Could Allow Information Disclosure
Vulnerability in Remote Desktop Protocol Could Allow Denial of Service
Vulnerability in Schannel Could Allow Security Feature Bypass
Tracking Microsoft Vulnerability Patches 2015
As shown in the chart above, number of vulnerabilities which were patched this month is slightly lower than that of February release where 56 vulnerabilities were patched. As we do every month, we’ve released a signature update #2473 to address vulnerabilities fixed in this month's patches. Happy patching!