Microsoft Security Bulletin Summary for March 2014

MS Patch Tuesday

In this Patch Tuesday Microsoft released Five bulletins addressing a total of 23 vulnerabilities.

Two are rated as Critical (addressing 19 vulnerabilities) and three are rated as Important.

Critical security updates addresses security issues in Internet Explorer 6 to Internet Explorer 11 and Microsoft DirectShow. Both of them potentially allow Remote Code Execution.

The other three security updates address issues in Windows Kernel-Mode Driver, Security Account Manager Remote (SAMR) Protocol and Microsoft Silverlight.

Microsoft Internet Explorer Zero-day CVE-2014-0322 which was exploited in the wild is also patched in MS14-012 bulletin. Apple Mac users with Silverlight 5 installed should apply the patch from MS14-014 bulletin


Microsoft security bulletin summary for March 2014 in order of severity.

MS14-012: Cumulative Security Update for Internet Explorer (2925418)
Severity Rating: Critical
Affected Software: Microsoft Windows, Internet Explorer
Vulnerability Impact: Remote Code Execution

MS14-013: Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (2929961)
Severity Rating: Critical
Affected Software: Microsoft Windows
Vulnerability Impact: Remote Code Execution

MS14-015: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2930275)
Severity Rating: Important
Affected Software: Microsoft Windows
Vulnerability Impact: Elevation of Privilege

MS14-016: Vulnerability in Security Account Manager Remote (SAMR) Protocol Could Allow Security Feature Bypass (2934418)
Severity Rating: Important
Affected Software: Microsoft Windows
Vulnerability Impact: Security Feature Bypass

MS14-014: Vulnerability in Silverlight Could Allow Security Feature Bypass (2932677)
Severity Rating: Important
Affected Software: Microsoft Silverlight
Vulnerability Impact: Security Feature Bypass


Download Saner now and keep your systems updated and secure.


– Veerendra GG

Subscribe For More Posts Like This

Get the latest research, best practices, industry trends and cybersecurity blogs from SecPod security experts

Invalid email address
We promise not to spam you. You can unsubscribe at any time.
0 0 vote
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments