Microsoft Patchday für Oktober 2016 mit 10 Security Bulletins für Windows, Office & Co.

Microsoft Patchday für Oktober 2016 mit 10 Security Bulletins für Windows, Office & Co.

Microsoft hat heute zehn Security Bulletins im Rahmen des Patchday für Oktober 2016 veröffentlicht und zum sofortigen Download freigegeben. Fünf davon werden als kritisch eingestuft, weitere vier werden mit der Gefahrenstufe hoch gekennzeichnet und das restliche stuft der US-Konzern mit der Gefahrenstufe mittel ein. Die Security Bulletins für Oktober 2016 betreffen Microsoft Windows, Internet Explorer, Microsoft Edge, Microsoft .NET Framework, Microsoft Office, Skype for Business, Microsoft Lync, Microsoft Office Services and Web Apps und Adobe Flash Player und beheben Sicherheitslücken. Die schwerwiegendsten davon können Remotecodeausführung ermöglichen- und zu Erhöhung von Berechtigungen führen. Nutzer, die das automatische Update aktiviert haben, müssen nichts tun, da die Sicherheitsupdates automatisch geladen und installiert werden. Benutzer, die das automatische Update nicht aktiviert haben, sollten auf Updates prüfen und sie manuell installieren. Weitere Infos finden sich im Security Bulletin für Oktober.

Microsoft Update

Download -> Microsoft Sicherheitsupdates für Oktober 2016

In der folgenden Liste sind die Security Bulletins für Oktober 2016 nach Schweregrad geordnet.

  • MS16-118 - Cumulative Security Update for Internet Explorer (3192887)
    This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer.
  • MS16-119 - Cumulative Security Update for Microsoft Edge (3192890)
    This security update resolves vulnerabilities in Edge. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user
  • MS16-120 - Security Update for Microsoft Graphics Component (3192884)
    This security update resolves vulnerabilities in Microsoft Windows, Microsoft .NET Framework, Microsoft Office, Skype for Business, Silverlight, and Microsoft Lync. The most serious of these vulnerabilities could allow remote code execution if a user either visits a specially crafted website or opens a specially crafted document.
  • MS16-121 - Security Update for Microsoft Office (3194063)
    This security update resolves a vulnerability in Office. An Office RTF remote code execution vulnerability exists in Office software when the Office software fails to properly handle RTF files.
  • MS16-122 - Security Update for Microsoft Video Control (3195360)
    This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if Microsoft Video Control fails to properly handle objects in memory.
  • MS16-123 - Security Update for Windows Kernel-Mode Drivers (3192892)
    This security update resolves vulnerabilities in Windows. The more severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that could exploit the vulnerabilities and take control of an affected system.
  • MS16-124 - Security Update for Windows Registry (3193227)
    This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker can access sensitive registry information.
  • MS16-125 - Security Update for Diagnostics Hub (3193229)
    This security update resolves a vulnerability in Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application.
  • MS16-126 - Security Update for Microsoft Internet Messaging API (3196067)
    This security update resolves a vulnerability in Microsoft Windows. An information disclosure vulnerability exists when the Microsoft Internet Messaging API improperly handles objects in memory.
  • MS16-127 - Security Update for Adobe Flash Player (3194343)
    This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, RT 8.1, and Windows 10.

Microsoft Patchday für August 2016 -> Weitere Infos

Alle Benutzer werden aufgefordert die verfügbaren Updates so schnell wie möglich zu installieren!

Kommentare sind geschlossen
it-blogger.net
Copyright © 2017 Valdet Beqiraj it-blogger.net