Microsoft Security Bulletin Summary for February 2014

thirty-one individual vulnerabilities. Four Bulletins are classified as Critical and three as important. Using a vulnerability scanning tool.

According to Microsoft’s security bulletin, the most severe and critical vulnerabilities exists in Internet Explorer. Microsoft released two critical patches at the last moment for Windows and Forefront Protection for exchange.
The three important fixes addresses vulnerabilities in Windows, .NET Framework, XML Core Services using a patch management solution.Microsoft security bulletin summary for February 2014 in order of severity.

MS14-010 : Internet Explorer cumulative Security Update (2909921)
Severity Rating : Critical
Affected Software: Microsoft Windows, Internet Explorer
Vulnerability Impact: Remote Code Execution

MS14-011 : VBScript Scripting Engine Could Allow Remote Code Execution (2928390)
Severity Rating: Critical
Affected Software: Microsoft Windows
Vulnerability Impact: Remote Code Execution

MS14-007 : Direct2D Could Allow Remote Code Execution (2912390)
Severity Rating: Critical
Affected Software: Microsoft Windows
Vulnerability Impact: Remote Code Execution

MS14-008 : Microsoft Forefront Protection for Exchange Could Allow Remote Code Execution (2927022)
Severity Rating: Critical
Affected Software: Microsoft Security Software
Vulnerability Impact: Remote Code Execution

MS14-009 : .NET Framework Could Allow Elevation of Privilege (2916607)
Severity Rating: Important
Affected Software: Microsoft Windows, .NET Framework
Vulnerability Impact: Elevation of Privilege

MS14-005 : Microsoft XML Core Services Could Allow Information Disclosure (2916036)
Severity Rating: Important
Affected Software: Microsoft Windows
Vulnerability Impact: Information Disclosure

MS14-006 : IPv6 Could Allow Denial of Service (2904659)
Severity Rating: Important
Affected Software: Microsoft Windows
Vulnerability Impact: Denial of Service

This is about Microsoft Security Bulletin February 2014

Download Saner now and keep your systems updated and secure.

CVE-2026-31431: From 732 Bytes to Root - Anatomy of a Modern Linux Privilege Escalation

Jun 24, 2026

CVE-2026-31431: The Nine-Year Kernel Bug Hiding in Plain Sight

CVE Research

CVE-2026-31431: The Nine-Year Kernel Bug Hiding in Plain Sight

Jun 23, 2026

CVE Research

Squidbleed: A 29-Year-Old Squid Proxy Flaw That Leaks Cleartext HTTP Requests

Jun 23, 2026

CVE Research

AryStinger Malware Leverages 4,300+ Legacy Routers to Establish Persistent Spy Infrastructure

AryStinger represents a calculated shift in IoT threat methodology, abandoning noisy, destructive payloads in favor of silent, long-term reconnaissance infrastructure. By exploiting unpatched, end-of-life routers and NAS devices through decade-old vulnerabilities, the threat operator has assembled a distributed fleet of over 4,300 Executor nodes capable of conducting parallelized DNS enumeration, port scanning, and service fingerprinting at scale, all while masking origin behind residential IP addresses. With active development ongoing and a potential operational timeline stretching back to 2024, AryStinger underscores a growing and underappreciated risk: forgotten edge hardware is not merely a compliance gap but exploitable infrastructure.

Jun 23, 2026

Search across all Learn content

Microsoft Security Bulletin Summary for February 2014

Featured Posts

CVE-2026-31431: From 732 Bytes to Root - Anatomy of a Modern Linux Privilege Escalation

CVE-2026-31431: The Nine-Year Kernel Bug Hiding in Plain Sight

Squidbleed: A 29-Year-Old Squid Proxy Flaw That Leaks Cleartext HTTP Requests

AryStinger Malware Leverages 4,300+ Legacy Routers to Establish Persistent Spy Infrastructure

Customers

Learn

Support