Welcome to the September edition of Microsoft Patch Tuesday Summary. In this edition there are 4 updates; one is marked "Critical" and three are rated "Important". A total of 42 vulnerabilities were fixed over 4 bulletins this month. One of the Critical update MS14-052 is an all version Internet Explorer (IE 6 to 11) patch. This single update resolves 37 CVE's (Common Vulnerability and Exposure) including the publicly disclosed CVE-2013-7331
Here is a list of Security bulletins which were rolled out in today's Patch Tuesday release.
-
|
Bulletin ID
|
Bulletin Title
|
Bulletin Severity
|
|
MS14-052
|
Cumulative Security Update for Internet Explorer (2977629)
|
Critical
|
|
MS14-053
|
Vulnerability in .NET Framework Could Allow Denial of Service (2990931)
|
Important
|
|
MS14-054
|
Vulnerability in Windows Task Scheduler Could Allow Elevation of Privilege (2988948)
|
Important
|
|
MS14-055
|
Vulnerabilities in Microsoft Lync Server Could Allow Denial of Service (2990928)
|
Important
|
Tracking Microsoft Vulnerability Patches 2014
As shown in the chart above, number of vulnerabilities which were patched this month is slightly higher than that of August's release. This Patch Tuesday turns out to be another IE dominated release just like previous two months. As we do every month, we’ve released a signature update #2416 to address vulnerabilities fixed in this month's patches. Happy patching!
For additional information on how you can protect your network from emerging threats, please visit http://www.juniper.net/as/en/security/