Security
Headlines
HeadlinesLatestCVEs

Headline

December 2014 Updates

Today, as part of Update Tuesday, we released seven security updates – three rated Critical and four rated Important in severity, to address 24 unique Common Vulnerabilities and Exposures (CVEs) in Microsoft Windows, Internet Explorer (IE), Office and Exchange. We encourage you to apply all of these updates. For more information about this month’s security updates, including the detailed view of the Exploit Index (XI) broken down by each CVE, visit the Microsoft Bulletin Summary webpage.

msrc-blog
#vulnerability#web#windows#microsoft#rce

Today, as part of Update Tuesday, we released seven security updates – three rated Critical and four rated Important in severity, to address 24 unique Common Vulnerabilities and Exposures (CVEs) in Microsoft Windows, Internet Explorer (IE), Office and Exchange.

We encourage you to apply all of these updates. For more information about this month’s security updates, including the detailed view of the Exploit Index (XI) broken down by each CVE, visit the Microsoft Bulletin Summary webpage. If you are not familiar with how we calculate XI, a full description can be found here.

We re-released two Security Bulletins:

  • MS14-065 Cumulative Security Update for Internet Explorer
  • MS14-066 Vulnerability in Schannel Could Allow Remote Code Execution

One Security Advisory was revised:

  • Update for Vulnerabilities in Adobe Flash Player in Internet Explorer(2755801).

For the latest information, you can follow the MSRC team on Twitter at @MSFTSecResponse.

Tracey Pretorius, Director
Response Communications

msrc-blog: Latest News

Toward greater transparency: Publishing machine-readable CSAF files