MS15-033: Description of the security update for SharePoint Server 2013 Word Automation Services: April 14, 2015

Resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file in an affected version of Office.IntroductionThis security update resolves vulnerabilities in Microsoft Office that could...

MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015

MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015 Introduction This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Office file in an...

Description of the security update for SharePoint Server 2013: August 14, 2018

Description of the security update for SharePoint Server 2013: August 14, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow information disclosure if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsof...

Security and Quality updates for .NET Framework 2.0 SP2, 3.0 SP2, 4.5.2 and 4.6 for Windows Server 2008 SP2 (KB 4345593)

Security and Quality updates for .NET Framework 2.0 SP2, 3.0 SP2, 4.5.2 and 4.6 for Windows Server 2008 SP2 KB 4345593 Summary This security update resolves an information disclosure vulnerability in Microsoft .NET Framework that could allow an attacker to access information in multi-tenant...

Description of the security update for the Windows elevation of privilege vulnerability in Windows Server 2008: July 10, 2018

Description of the security update for the Windows elevation of privilege vulnerability in Windows Server 2008: July 10, 2018 Summary An elevation of privilege vulnerability exists when Windows fails a check, allowing a sandbox escape. To learn more about the vulnerability, go to CVE-2018-8314. H...

Description of the security update for the HIDParser elevation of privilege vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: June 12, 2018

Description of the security update for the HIDParser elevation of privilege vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: June 12, 2018 Summary To learn more about the vulnerability, go to CVE-2018-8169.Important If you install a languag...

Description of the security update for the Windows Hyper-V denial of service vulnerability in Windows Server 2008: March 13, 2018

Description of the security update for the Windows Hyper-V denial of service vulnerability in Windows Server 2008: March 13, 2018 Summary A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a...

Description of the security update for the Windows Wireless WPA pairwise encryption key reinstallation vulnerability in WES09 and POSReady 2009: March 13, 2018

Description of the security update for the Windows Wireless WPA pairwise encryption key reinstallation vulnerability in WES09 and POSReady 2009: March 13, 2018 Summary An information disclosure vulnerability exists in the Windows implementation of wireless networking. An attacker who successfully...

Description of the security update for the Windows Kernel vulnerability in Windows Server 2008: February 13, 2018

Description of the security update for the Windows Kernel vulnerability in Windows Server 2008: February 13, 2018 Summary An information disclosure vulnerability and an elevation of privilege vulnerability exist when the Windows kernel improperly handles objects in memory. To learn more about the...

Description of the security update for the StructuredQuery remote code execution vulnerability in Windows Server 2008: February 13, 2018

Description of the security update for the StructuredQuery remote code execution vulnerability in Windows Server 2008: February 13, 2018 Summary A remote code execution vulnerability exists in StructuredQuery when the software fails to properly handle objects in memory. To learn more about the...

Description of the security update for the elevation of privilege vulnerability in Windows Server 2008: January 3, 2018

Description of the security update for the elevation of privilege vulnerability in Windows Server 2008: January 3, 2018 Summary An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions. An attacker who successfully exploits the vulnerability could...

Description of the security update for SQL Server 2014 SP2 CU10: January 16, 2018

Description of the security update for SQL Server 2014 SP2 CU10: January 16, 2018 Summary Microsoft is aware of a new publicly disclosed class of vulnerabilities that are referred to as “speculative execution side-channel attacks” that affect many modern processors and operating systems including...

Description of the security update for SQL Server 2017 RTM CU3: January 3, 2018

Description of the security update for SQL Server 2017 RTM CU3: January 3, 2018 Summary Microsoft is aware of detailed information that has been published about a class of vulnerabilities that are referred to as speculative execution side-channel attacks. To learn more about the vulnerability, go...

Description of the security update for the information disclosure vulnerability in Windows Server 2008: December 12, 2017

Description of the security update for the information disclosure vulnerability in Windows Server 2008: December 12, 2017 Summary An information disclosure vulnerability exists when the Windows its:// protocol handler unnecessarily sends traffic to a remote site to determine the zone of a provide...

Description of the security update for the Windows EOT font engine information disclosure vulnerability in Windows Server 2008: November 14, 2017

Description of the security update for the Windows EOT font engine information disclosure vulnerability in Windows Server 2008: November 14, 2017 Summary An information disclosure vulnerability exists in the way that the Microsoft Windows Embedded OpenType EOT font engine parses specially crafted...

Description of the security update for the Windows SMB vulnerabilities in Windows Server 2008: October 10, 2017

Description of the security update for the Windows SMB vulnerabilities in Windows Server 2008: October 10, 2017 Summary Vulnerabilities exist in Windows SMB that could allow remote code execution, denial of service, or information disclosure. To learn more about the vulnerabilities, go to the...

"Unexpected error from external database driver" error when you create or open Microsoft Excel .xls files

"Unexpected error from external database driver" error when you create or open Microsoft Excel .xls files Summary This security update resolves an issue that was introduced in the October 10, 2017, update. Because of this issue, applications that are based on the Microsoft JET Database Engine...

Security update for Windows Server 2008: July 11, 2017

Security update for Windows Server 2008: July 11, 2017 Summary This security update resolves vulnerabilities in Windows Server 2008 that could allow elevation of privilege or information disclosure. To learn more about the vulnerabilities, go to the Security Update Guide. More Information Importa...

Description of the security update for 2007 Microsoft Office Suite: July 11, 2017

Description of the security update for 2007 Microsoft Office Suite: July 11, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see...

Description of the security update for Excel Services on SharePoint Server 2013: June 13, 2017

Description of the security update for Excel Services on SharePoint Server 2013: June 13, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilitie...