Microsoft Sicherheitsupdates für Mai 2014

Microsoft Sicherheitsupdates für Mai 2014

Microsoft hat im Rahmen des heutigen Patchday für Mai 2014 sechs Sicherheit-Bulletins veröffentlicht und zum sofortigen Download bereitgestellt. Zwei der sechs Sicherheit-Bulletins stuft der Softwarekonzern als “kritisch” ein, die restlichen vier Security Bulletins werden als "wichtig" eingestuft. Die Sicherheit-Bulletins beheben insgesamt dreizehn Sicherheitslücken in Microsoft Windows, Internet Explorer, Microsoft Office, Microsoft .NET Framework, Microsoft Server Software und Productivity Software. Windows Benutzer, die das automatische Update von Windows aktiviert haben, müssen nichts tun, da alle Sicherheitsupdates automatisch geladen und installiert werden. Benutzer, die die automatische Aktualisierung nicht aktiviert haben, müssen auf Updates prüfen und diese manuell installieren. Weitere Informationen über die Microsoft Sicherheitsupdates für Mai 2014 findet ihr im dazu passenden Microsoft Bulletin Summary.

Microsoft Update

Download -> Microsoft Sicherheitsupdates für Mai 2014

  • MS14-022 - Vulnerabilities in SharePoint Server Could Allow Remote Code Execution (2952166)
    This security update resolves multiple vulnerabilities in Microsoft Office server and productivity software. The most severe of these vulnerabilities could allow remote code execution if an authenticated attacker sends specially crafted page content to a target SharePoint server.
  • MS14-023 - Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2961037)
    This security update resolves two vulnerabilities in Microsoft Office. The most severe vulnerability could allow remote code execution if a user opens an Office file that is located in the same network directory as a specially crafted library file.
  • MS14-024 - Vulnerability in a Common Control Could Allow Security Feature Bypass (2961033)
    This security update resolves one vulnerability in an implementation of the MSCOMCTL common controls library. The vulnerability could allow security feature bypass if a user views a specially crafted webpage in a web browser capable of instantiating COM components, such as Internet Explorer.
  • MS14-025 - Vulnerability in Group Policy Preferences Could Allow Elevation of Privilege (2962486)
    This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if Active Directory Group Policy preferences are used to distribute passwords across the domain - a practice that could allow an attacker to retrieve and decrypt the password stored with Group Policy preferences.
  • MS14-026 - Vulnerability in .NET Framework Could Allow Elevation of Privilege (2958732)
    This security update resolves a vulnerability in Microsoft .NET Framework. The vulnerability could allow elevation of privilege if an unauthenticated attacker sends specially crafted data to an affected workstation or server that uses .NET Remoting.
  • MS14-027 - Vulnerability in Windows Shell Handler Could Allow Elevation of Privilege (2962488)
    This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker runs a specially crafted application that uses ShellExecute. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability.
  • MS14-028 - Vulnerability in iSCSI Could Allow Denial of Service (2962485)
    This security update resolves two vulnerabilities in Microsoft Windows. The vulnerabilities could allow denial of service if an attacker sends large amounts of specially crafted iSCSI packets over the target network. This vulnerability only affects servers for which the iSCSI target role has been enabled.
  • MS14-029 - Security Update for Internet Explorer (2962482)
    This security update resolves two vulnerabilities in Internet Explorer. The vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer.

Microsoft Patch Day für Mai 2014 -> Weitere Infos

  • Microsoft Security Bulletin Summary for May 2014
    This bulletin summary lists security bulletins released for May 2014.
    https://technet.microsoft.com/library/security/ms14-may
  • TechNet Blogs > MSRC > The May 2014 Security Updates
    Today, we released eight security bulletins – two rated Critical and six rated Important – to address 13 Common Vulnerability & Exposures (CVEs) in .NET Framework, Office, SharePoint, Internet Explorer, and Windows. We encourage you to apply all of these updates, but for those who need to prioritize their deployment planning, we recommend focusing on MS14-024, MS14-025 and MS14-029.
    http://blogs.technet.com/b/msrc/archive/2014/05/13/the-may-2014-security-updates.aspx

Alle Benutzer werden aufgefordert die verfügbaren Updates so schnell wie möglich zu installieren!!

Kommentare sind geschlossen
it-blogger.net
Copyright © 2017 Valdet Beqiraj it-blogger.net