Tuesday, March 17, 2015

March Patch Tuesday brings 14 bulletins

Microsoft released MEGA Patch Tuesday for March addressing 14 security bulletins covering Windows, Internet Explorer and Office. Among all, 5 bulletins rated as 'CRITICAL'. Surprisingly, FREAK vulnerability rated as 'Important' contrast to its rating as a high-profile security flaw. Almost all versions of Windows are vulnerable to FREAK issue that allows intruders to intercept and decrypt HTTPS connections between vulnerable clients and servers. High risk updates target Internet Explorer, Windows, Windows VBScript Scripting Engine, Windows Adobe Font Driver and Microsoft Server in Office. Internet Explorer bulletin mostly addresses memory corruption issues along with two privilege escalation flaws. Medium risk updates patch security flaws in Remote Desktop Protocol, Windows Photo Decoder Component, Windows Task Scheduler, Windows NETLOGON, Microsoft Exchange Server, PNG Processing and Windows Kernel. <more>

No comments: