44 matches found
MS15-033: Description of the security update for SharePoint Server 2013 Word Automation Services: April 14, 2015
Resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file in an affected version of Office.IntroductionThis security update resolves vulnerabilities in Microsoft Office that could...
MS14-081: Description of the security update for Word 2013: December 9, 2014
Resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file in an affected version of Office.IntroductionThis security update resolves vulnerabilities in Microsoft Office that could...
MS15-046: Description of the security update for Office Web Apps Server 2013: May 12, 2015
Resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Microsoft Office file.IntroductionThis update resolves vulnerabilities in Microsoft Office Web Apps Server 2013 that could allow remote code execution if an authenticated attack...
MS15-046: Description of the security update for SharePoint Server 2013 Word Automation Services: May 12, 2015
Resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file in an affected version of Office.IntroductionThis security update resolves vulnerabilities in Microsoft Office that could...
MS15-022: Description of the security update for Office Web Apps Server 2013: March 10, 2015
Resolves vulnerabilities in Office Web Apps Server 2013 that could allow remote code execution if an authenticated attacker sends specially crafted page content to a targeted computer that is running SharePoint Server.IntroductionThis update resolves vulnerabilities in Microsoft Office Web Apps...
MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015
MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015 Introduction This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Office file in an...
Description of the security update for SharePoint Server 2013: August 14, 2018
Description of the security update for SharePoint Server 2013: August 14, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow information disclosure if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsof...
Security and Quality updates for .NET Framework 2.0 SP2, 3.0 SP2, 4.5.2 and 4.6 for Windows Server 2008 SP2 (KB 4345593)
Security and Quality updates for .NET Framework 2.0 SP2, 3.0 SP2, 4.5.2 and 4.6 for Windows Server 2008 SP2 KB 4345593 Summary This security update resolves an information disclosure vulnerability in Microsoft .NET Framework that could allow an attacker to access information in multi-tenant...
Description of the security update for the Windows elevation of privilege vulnerability in Windows Server 2008: July 10, 2018
Description of the security update for the Windows elevation of privilege vulnerability in Windows Server 2008: July 10, 2018 Summary An elevation of privilege vulnerability exists when Windows fails a check, allowing a sandbox escape. To learn more about the vulnerability, go to CVE-2018-8314. H...
Description of the security update for the HIDParser elevation of privilege vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: June 12, 2018
Description of the security update for the HIDParser elevation of privilege vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: June 12, 2018 Summary To learn more about the vulnerability, go to CVE-2018-8169.Important If you install a languag...
End of support for Office 2007
End of support for Office 2007 Support for Office 2007 ended on October 10, 2017. All of your Office 2007 apps will continue to function. However, you could expose yourself to serious and potentially harmful security risks. Upgrade to a newer version of Office so you can stay up to date with all...
Description of the security update for the Windows Hyper-V denial of service vulnerability in Windows Server 2008: March 13, 2018
Description of the security update for the Windows Hyper-V denial of service vulnerability in Windows Server 2008: March 13, 2018 Summary A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a...
Description of the security update for the Windows Wireless WPA pairwise encryption key reinstallation vulnerability in WES09 and POSReady 2009: March 13, 2018
Description of the security update for the Windows Wireless WPA pairwise encryption key reinstallation vulnerability in WES09 and POSReady 2009: March 13, 2018 Summary An information disclosure vulnerability exists in the Windows implementation of wireless networking. An attacker who successfully...
Description of the security update for the Windows Kernel vulnerability in Windows Server 2008: February 13, 2018
Description of the security update for the Windows Kernel vulnerability in Windows Server 2008: February 13, 2018 Summary An information disclosure vulnerability and an elevation of privilege vulnerability exist when the Windows kernel improperly handles objects in memory. To learn more about the...
Description of the security update for the StructuredQuery remote code execution vulnerability in Windows Server 2008: February 13, 2018
Description of the security update for the StructuredQuery remote code execution vulnerability in Windows Server 2008: February 13, 2018 Summary A remote code execution vulnerability exists in StructuredQuery when the software fails to properly handle objects in memory. To learn more about the...
Description of the security update for the elevation of privilege vulnerability in Windows Server 2008: January 3, 2018
Description of the security update for the elevation of privilege vulnerability in Windows Server 2008: January 3, 2018 Summary An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions. An attacker who successfully exploits the vulnerability could...
Description of the security update for SQL Server 2014 SP2 CU10: January 16, 2018
Description of the security update for SQL Server 2014 SP2 CU10: January 16, 2018 Summary Microsoft is aware of a new publicly disclosed class of vulnerabilities that are referred to as “speculative execution side-channel attacks” that affect many modern processors and operating systems including...
Description of the security update for SQL Server 2017 RTM CU3: January 3, 2018
Description of the security update for SQL Server 2017 RTM CU3: January 3, 2018 Summary Microsoft is aware of detailed information that has been published about a class of vulnerabilities that are referred to as speculative execution side-channel attacks. To learn more about the vulnerability, go...
Description of the security update for the information disclosure vulnerability in Windows Server 2008: December 12, 2017
Description of the security update for the information disclosure vulnerability in Windows Server 2008: December 12, 2017 Summary An information disclosure vulnerability exists when the Windows its:// protocol handler unnecessarily sends traffic to a remote site to determine the zone of a provide...
Description of the security update for the Windows EOT font engine information disclosure vulnerability in Windows Server 2008: November 14, 2017
Description of the security update for the Windows EOT font engine information disclosure vulnerability in Windows Server 2008: November 14, 2017 Summary An information disclosure vulnerability exists in the way that the Microsoft Windows Embedded OpenType EOT font engine parses specially crafted...