Description of the security update for PowerPoint 2016: October 9, 2018

Description of the security update for PowerPoint 2016: October 9, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common...

Description of the security update for the elevation of privilege vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: October 9, 2018

Description of the security update for the elevation of privilege vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: October 9, 2018 Summary An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in...

Description of the security update for the information disclosure vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: October 9, 2018

Description of the security update for the information disclosure vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: October 9, 2018 Summary An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in...

Description of the security update for the buffer overflow vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: September 11, 2018

Description of the security update for the buffer overflow vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: September 11, 2018 Summary A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affect...

Description of the security update for the remote code execution vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: September 11, 2018

Description of the security update for the remote code execution vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: September 11, 2018 Summary A remote code execution vulnerability exists when the Windows font library handles specially crafted embedded fonts...

May 17, 2018—KB4103713 (Preview of Monthly Rollup)

May 17, 2018—KB4103713 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were part of KB4103718 released May 8, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses additional...

Description of the security update for the Windows kernel elevation of privilege vulnerability in Windows Server 2008: July 10, 2018

Description of the security update for the Windows kernel elevation of privilege vulnerability in Windows Server 2008: July 10, 2018 Summary An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploits thi...

Description of the security update for the security feature bypass vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: July 10, 2018

Description of the security update for the security feature bypass vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: July 10, 2018 Summary A security feature bypass vulnerability exists when Microsoft WordPad improperly handles embedded OLE...

Description of the security update for the remote code execution vulnerability in Windows Server 2008: June 12, 2018

Description of the security update for the remote code execution vulnerability in Windows Server 2008: June 12, 2018 Summary A remote code execution vulnerability exists in the way that Windows handles objects in memory. To learn more about the vulnerability, go to CVE-2018-8136. More Information...

End of support for Office 2013

End of support for Office 2013 Support for Office 2013 ended on April 11, 2023 and there will be no extension and no extended security updates. All of your Office 2013 apps will continue to function. However, you could expose yourself to serious and potentially harmful security risks.Buy or try...

Description of the security update for the Microsoft COM for Windows remote code execution vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: May 08, 2018

Description of the security update for the Microsoft COM for Windows remote code execution vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: May 08, 2018 Summary A remote code execution vulnerability exists in "Microsoft COM for Windows" whe...

Description of the security update for vulnerabilities in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: April 10, 2018

Description of the security update for vulnerabilities in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: April 10, 2018 Summary A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affect...

Description of the security update for the Windows Wireless WPA pairwise encryption key reinstallation vulnerability in WES09 and POSReady 2009: March 13, 2018

Description of the security update for the Windows Wireless WPA pairwise encryption key reinstallation vulnerability in WES09 and POSReady 2009: March 13, 2018 Summary An information disclosure vulnerability exists in the Windows implementation of wireless networking. An attacker who successfully...

Description of the security update for the Windows remote code execution vulnerability in Windows Server 2008, WES09, and POSReady 2009: February 13, 2018

Description of the security update for the Windows remote code execution vulnerability in Windows Server 2008, WES09, and POSReady 2009: February 13, 2018 Summary A remote code execution vulnerability exists when Windows improperly handles objects in memory. To learn more about the vulnerability,...

Description of the security update for the StructuredQuery remote code execution vulnerability in Windows Server 2008: February 13, 2018

Description of the security update for the StructuredQuery remote code execution vulnerability in Windows Server 2008: February 13, 2018 Summary A remote code execution vulnerability exists in StructuredQuery when the software fails to properly handle objects in memory. To learn more about the...

Description of the security update for the Windows Common Log file system driver elevation of privilege vulnerability in Windows Server 2008: February 13, 2018

Description of the security update for the Windows Common Log file system driver elevation of privilege vulnerability in Windows Server 2008: February 13, 2018 Summary An elevation of privilege vulnerability exist when the Windows Common Log File System CLFS driver improperly handles objects in...

Description of the security update for SQL Server 2014 SP2 CU10: January 16, 2018

Description of the security update for SQL Server 2014 SP2 CU10: January 16, 2018 Summary Microsoft is aware of a new publicly disclosed class of vulnerabilities that are referred to as “speculative execution side-channel attacks” that affect many modern processors and operating systems including...

Description of the security update for SQL Server 2017 GDR: January 3, 2018

Description of the security update for SQL Server 2017 GDR: January 3, 2018 Summary Microsoft is aware of detailed information that has been published about a class of vulnerabilities that are referred to as speculative execution side-channel attacks. To learn more about the vulnerabilities, go t...

Description of the security update for the ATMFD.dll information disclosure vulnerability in Windows Server 2008: January 3, 2018

Description of the security update for the ATMFD.dll information disclosure vulnerability in Windows Server 2008: January 3, 2018 Summary An information disclosure vulnerability exists in Adobe Type Manager Font Driver ATMFD.dll when it fails to properly handle objects in memory. An attacker who...

Description of the security update for Office 2016: December 12, 2017

Description of the security update for Office 2016: December 12, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common...