Hello, welcome to this month's blog on the Microsoft patch release. This month the vendor is releasing nine bulletins, six of which are rated Critical.
-
MS16-095 Cumulative Security Update for Internet Explorer (3177356) MS Rating: Critical
Internet Explorer Memory Corruption Vulnerability (CVE-2016-3288) MS Rating: Critical
A remote code execution vulnerability exists when Internet Explorer improperly accesses an object in memory. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Microsoft Browser Memory Corruption Vulnerability (CVE-2016-3289) MS Rating: Critical
A remote code execution vulnerability exists when Internet Explorer improperly accesses an object in memory. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer Memory Corruption Vulnerability (CVE-2016-3290) MS Rating: Critical
A remote code execution vulnerability exists when Internet Explorer improperly accesses an object in memory. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Microsoft Browser Memory Corruption Vulnerability (CVE-2016-3293) MS Rating: Critical
A remote code execution vulnerability exists when Internet Explorer improperly accesses an object in memory. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Microsoft Browser Memory Corruption Vulnerability (CVE-2016-3322) MS Rating: Critical
A remote code execution vulnerability exists when Internet Explorer improperly accesses an object in memory. This vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Internet Explorer Information Disclosure Vulnerability (CVE-2016-3321) MS Rating: Important
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system.
Microsoft Browser Information Disclosure Vulnerability (CVE-2016-3326) MS Rating: Important
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system.
Microsoft Browser Information Disclosure Vulnerability (CVE-2016-3327) MS Rating: Important
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system.
Microsoft Browser Information Disclosure Vulnerability (CVE-2016-3329) MS Rating: Moderate
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system.
-
MS16-096 Cumulative Security Update for Microsoft Edge (3177358) MS Rating: Critical
Microsoft Browser Memory Corruption Vulnerability (CVE-2016-3289) MS Rating: Critical
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory. The vulnerability could corrupt memory in a way that enables an attacker to execute arbitrary code in the context of the current user.
Microsoft Browser Memory Corruption Vulnerability (CVE-2016-3293) MS Rating: Critical
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory. The vulnerability could corrupt memory in a way that enables an attacker to execute arbitrary code in the context of the current user.
Scripting Engine Memory Corruption Vulnerability (CVE-2016-3296) MS Rating: Critical
A remote code execution vulnerability exists in the way that the Chakra JavaScript engine renders when handling objects in memory in Microsoft Edge. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Microsoft PDF Remote Code Execution Vulnerability (CVE-2016-3319) MS Rating: Critical
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory. The vulnerability could corrupt memory in a way that enables an attacker to execute arbitrary code in the context of the current user.
Microsoft Browser Memory Corruption Vulnerability (CVE-2016-3322) MS Rating: Critical
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory. The vulnerability could corrupt memory in a way that enables an attacker to execute arbitrary code in the context of the current user.
Microsoft Browser Information Disclosure Vulnerability (CVE-2016-3326) MS Rating: Important
An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system.
Microsoft Browser Information Disclosure Vulnerability (CVE-2016-3327) MS Rating: Important
An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system.
Microsoft Browser Information Disclosure Vulnerability (CVE-2016-3329) MS Rating: Moderate
An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system.
-
MS16-097 Security Update for Microsoft Graphics Component (3177393) MS Rating: Critical
Microsoft Windows Graphics Component Remote Code Execution Vulnerability (CVE-2016-3301) MS Rating: Critical
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system.
Microsoft Windows Graphics Component Remote Code Execution Vulnerability (CVE-2016-3303) MS Rating: Critical
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system.
Microsoft Windows Graphics Component Remote Code Execution Vulnerability (CVE-2016-3304) MS Rating: Critical
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system.
-
MS16-098 Security Update for Kernel-Mode Drivers (3178466) MS Rating: Important
Microsoft Win32k Elevation of Privilege Vulnerability (CVE-2016-3308) MS Rating: Important
An elevation of privilege vulnerability exists when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in kernel mode.
Microsoft Win32k Elevation of Privilege Vulnerability (CVE-2016-3309) MS Rating: Important
An elevation of privilege vulnerability exists when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in kernel mode.
Microsoft Win32k Elevation of Privilege Vulnerability (CVE-2016-3310) MS Rating: Important
An elevation of privilege vulnerability exists when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in kernel mode.
Microsoft Win32k Elevation of Privilege Vulnerability (CVE-2016-3311) MS Rating: Important
An elevation of privilege vulnerability exists when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in kernel mode.
-
MS16-099 Security Update for Office (3177451) MS Rating: Critical
Microsoft Office Memory Corruption Vulnerability (CVE-2016-3313) MS Rating: Important
A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
Microsoft OneNote Information Disclosure Vulnerability (CVE-2016-3315) MS Rating: Important
An information disclosure vulnerability exists when Microsoft OneNote improperly discloses its memory contents. An attacker who exploited the vulnerability could use the information to compromise the user's computer or data.
Microsoft Office Memory Corruption Vulnerability (CVE-2016-3316) MS Rating: Critical
A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
Microsoft Office Memory Corruption Vulnerability (CVE-2016-3317) MS Rating: Important
A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
Microsoft Graphics Component Memory Corruption Vulnerability (CVE-2016-3318) MS Rating: Important
A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
-
MS16-100 Security Update for Secure Boot (3179577) MS Rating: Important
Microsoft Secure Boot Security Feature Bypass Vulnerability (CVE-2016-3320) MS Rating: Important
A security feature bypass vulnerability exists when Windows Secure Boot improperly loads a boot manager affected by the vulnerability. An attacker who successfully exploited this vulnerability could disable code integrity checks, allowing test-signed executables and drivers to be loaded onto a target device.
-
MS16-101 Security Update for Windows Authentication Methods (3178465) MS Rating: Critical
Microsoft Kerberos Elevation of Privilege Vulnerability (CVE-2016-3237) MS Rating: Important
An elevation of privilege vulnerability exists in Windows when Kerberos improperly handles a password change request and falls back to NTLM as the default authentication protocol.
Microsoft NetLogon Elevation of Privilege Vulnerability (CVE-2016-3300) MS Rating: Important
An elevation of privilege vulnerability exists when Windows Netlogon improperly establishes a secure communications channel to a domain controller. An attacker who successfully exploited the vulnerability could run a specially crafted application on a domain-joined system.
-
MS16-102 Security Update for Microsoft Windows PDF Library (3182248) MS Rating: Critical
Microsoft PDF Remote Code Execution Vulnerability (CVE-2016-3319) MS Rating: Critical
A remote code execution vulnerability exists when Microsoft Windows PDF Library improperly handles objects in memory. The vulnerability could corrupt memory in a way that enables an attacker to execute arbitrary code in the context of the current user.
-
MS16-103 Security Update for ActiveSyncProvider (3182332) MS Rating: Important
Microsoft Universal Outlook Information Disclosure Vulnerability (CVE-2016-3312) MS Rating: Important
An information disclosure vulnerability exists when Universal Outlook fails to establish a secure connection. An attacker could use this vulnerability to obtain the username and password of a user. The update addresses the vulnerability by preventing Universal Outlook from disclosing usernames and passwords.
More information on the vulnerabilities being addressed this month is available at Symantec's free Security Response portal and to our customers through the DeepSight Threat Management System.