Saturday, January 18, 2014

Only FOUR bulletins for January Patch Tuesday

Microsoft disclosed four security bulletins describing a total of six vulnerabilities and released product updates to address these vulnerabilities. January Patch Tuesday repairs a privilege escalation bug in the ND Proxy Driver that manages Microsoft's Telephony API. Microsoft had released a mitigation that would have rendered the API unusable. The vulnerability was rated important because it could not be exploited remotely. An attacker would need to log in to a system with valid credentials and run a malicious application in order to exploit the vulnerability locally. <more>

No comments: