Microsoft March 2017 Patch Tuesday brings 18 Security bulletins addressing 139 security vulnerabilities in addition to 7 vulnerabilities for Adobe Flash Player. Nine bulletins are rated as Critical, nine are rated as Important.

The Nine Critical bulletins are as follows:

  • MS17-006 for Internet Explorer browser covers 12 CVE’s
  • MS17-007 for Microsoft Edge covers 32 CVE’s
  • MS17-008 for Microsoft Windows Hyper-V covers 11 CVE’s
  • MS17-009 for Microsoft Windows PDF Library covers 1 CVE
  • MS17-010 for Microsoft Windows SMB Server covers 6 CVE’s
  • MS17-011 for Microsoft Uniscribe covers 29 CVE’s
  • MS17-012 for Microsoft Windows covers 6 CVE’s
  • MS17-013 for Microsoft Graphics Component covers 12 CVE’s
  • MS17-023 for Adobe Flash Player covers 7 CVE’s

Critical vulnerabilities allow remote attackers to perform Remote Code Execution. The other bulletins which are marked as important allow Remote code execution, Information Disclosure and Elevation of Privilege. Three of the bulletins (MS17-006, MS17-012, and MS17-013) contain fixes for vulnerabilities that have exploit code publicly available.

Microsoft security bulletin summary for March 2017 in the order of severity:

MS17-006: Cumulative Security Update for Internet Explorer (4013073)
Severity Rating: Critical
Affected Software: Internet Explorer
Impact: Remote Code Execution

MS17-007: Cumulative Security Update for Microsoft Edge (4013071)
Severity Rating: Critical
Affected Software: Microsoft Edge
Impact: Remote Code Execution

MS17-008: Security Update for Windows Hyper-V (4013082)
Severity Rating: Critical
Affected Software: Windows Hyper-V
Impact: Remote Code Execution

MS17-009: Security Update for Microsoft Windows PDF Library (4010319)
Severity Rating: Critical
Affected Software: Microsoft Windows PDF Library
Impact: Remote Code Execution

MS17-010: Security Update for Microsoft Windows SMB Server (4013389)
Severity Rating: Critical
Affected Software: Microsoft Windows SMB Server
Impact: Remote Code Execution

MS17-011: Security Update for Microsoft Uniscribe (4013076)
Severity Rating: Critical
Affected Software: Microsoft Uniscribe
Impact: Remote Code Execution

MS17-012: Security Update for Microsoft Windows (4013078)
Severity Rating: Critical
Affected Software: Microsoft Windows
Impact: Remote Code Execution

MS17-013: Security Update for Microsoft Graphics Component (4013075)
Severity Rating: Critical
Affected Software: Microsoft Graphics Component
Impact: Remote Code Execution

MS17-023: Security Update for Adobe Flash Player (4014329)
Severity Rating: Critical
Affected Software: Adobe Flash Player
Impact: Remote Code Execution

MS17-014: Security Update for Microsoft Office (4013241)
Severity Rating: Important
Affected Software: Microsoft Office
Impact: Remote Code Execution

MS17-015: Security Update for Microsoft Exchange Server (4013242)
Severity Rating: Important
Affected Software: Microsoft Exchange Server
Impact: Remote Code Execution

MS17-016: Security Update for Windows IIS (4013074)
Severity Rating: Important
Affected Software: Windows IIS
Impact: Remote Code Execution

MS17-017: Security Update for Windows Kernel (4013081)
Severity Rating: Important
Affected Software: Windows Kernel
Impact: Elevation of Privilege

MS17-018: Security Update for Windows Kernel-Mode Drivers (4013083)
Severity Rating: Important
Affected Software: Windows Kernel-Mode Drivers
Impact: Elevation of Privilege

MS17-019: Security Update for Active Directory Federation Services (4010320)
Severity Rating: Important
Affected Software: Active Directory Federation Services
Impact: Information Disclosure

MS17-020: Security Update for Windows DVD Maker (3208223)
Severity Rating: Important
Affected Software: Windows DVD Maker
Impact: Information Disclosure

MS17-021: Security Update for Windows DirectShow (4010318)
Severity Rating: Important
Affected Software: Windows DirectShow
Impact: Information Disclosure

MS17-022: Security Update for Microsoft XML Core Services (4010321)
Severity Rating: Important
Affected Software: Microsoft XML Core Services
Impact: Information Disclosure

SecPod Saner detects these vulnerabilities and automatically fixes it by applying security updates. Download Saner now and keep your systems updated and secure.

– Shakeel

Loading Facebook Comments ...

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes:

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>