Welcome to the May edition of Microsoft Patch Tuesday Summary. In this edition there are 15 updates; 7 are marked "Critical" and 8 are rated "Important". A total of 36 CVE's (Common Vulnerability and Exposure) were fixed over 15 bulletins this month. One of the Critical update MS16-051 is an Internet Explorer (IE 9 to 11) patch. This single update resolves 5 CVE's (Common Vulnerability and Exposure).
Here is a list of Security bulletins which were rolled out in today's Patch Tuesday release.
|
Bulletin ID
|
Bulletin Title
|
Bulletin Severity
|
|
MS16-051
|
Cumulative Security Update for Internet Explorer
|
Critical
|
|
MS16-052
|
Cumulative Security Update for Microsoft Edge
|
Critical
|
|
MS16-053
|
Cumulative Security Update for JScript and VBScript
|
Critical
|
|
MS16-054
|
Vulnerability in Microsoft Office Could Allow Remote Code Execution
|
Critical
|
|
MS16-055
|
Vulnerability in Microsoft Graphics Component Could Allow Remote Code Execution
|
Critical
|
|
MS16-056
|
Vulnerability in Windows Journal Could Allow Remote Code Execution
|
Critical
|
|
MS16-057
|
Vulnerability in Windows Shell Could Allow Remote Code Execution
|
Critical
|
|
MS16-058
|
Vulnerability in Windows IIS Could Allow Remote Code Execution
|
Important
|
|
MS16-059
|
Vulnerability in Windows Media Center Could Allow Remote Code Execution
|
Important
|
|
MS16-060
|
Vulnerability in Windows Kernel Could Allow Elevation of Privilege
|
Important
|
|
MS16-061
|
Vulnerability in Microsoft RPC Could Allow Elevation of Privilege
|
Important
|
|
MS16-062
|
Vulnerability in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege
|
Important
|
|
MS16-065
|
Vulnerability in .NET Framework Could Allow Information Disclosure
|
Important
|
|
MS16-066
|
Vulnerability in Virtual Secure Mode could allow security feature bypass
|
Important
|
|
MS16-067
|
Vulnerability in Volume Manager Driver could allow information disclosure
|
Important
|
Tracking Microsoft Vulnerability Patches 2016
As shown in the chart above, number of vulnerabilities which were patched this month is significantly higher than that of previous month's where 30 vulnerabilities were patched. As we do every month, we’ve released a signature update #2717 to address vulnerabilities fixed in this month's patches. Happy patching!
For additional information on how you can protect your network from emerging threats, please visit http://www.juniper.net/as/en/security/