Microsoft Sicherheitsupdates für Januar 2014
Der US-amerikanische Softwarekonzern Microsoft hat im Laufe des Abends wie angekündigt, vier Security Bulletins im Rahmen des Patchday für Januar 2014 veröffentlicht und zum Download bereitgestellt. Die Security Bulletins, die von Microsoft mit der Gefahrenstufe "hoch" eingestuft werden, beheben insgesamt sechs in Microsoft Windows, Office und Dynamics AX entdeckte Schwachstellen. Benutzer, die die automatische Aktualisierung von Windows aktiviert haben, müssen nichts tun, da alle Sicherheitsupdates automatisch geladen und installiert werden. Benutzer, die die automatische Aktualisierung von Windows nicht aktiviert haben, müssen auf Updates prüfen und diese manuell installieren.
Download -> Microsoft Sicherheitsupdates für Januar 2014
- MS14-001 - Vulnerabilities in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (2916605)
This security update resolves three vulnerabilitiesin Microsoft Office. The vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Word or other affected Microsoft Office software. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. - MS14-002 - Vulnerability in Windows Kernel Could Allow Elevation of Privilege (2914368)
This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. - MS14-003 - Vulnerability in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2913602)
This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if a user logs on to a system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. - MS14-004 - Vulnerability in Microsoft Dynamics AX Could Allow Denial of Service (2880826)
This security update resolves one vulnerability in Microsoft Dynamics AX. The vulnerability could allow denial of service if an authenticated attacker submits specially crafted data to an affected Microsoft Dynamics AX Application Object Server (AOS) instance. An attacker who successfully exploited this vulnerability could cause the target AOS instance to stop responding to client requests.
Microsoft Patch Day für Januar 2014 -> Weitere Infos
- Microsoft Security Bulletin Summary for January 2014
This bulletin summary lists security bulletins released for January 2014.
http://technet.microsoft.com/en-us/security/bulletin/ms14-jan - A Look Into the Future and the January 2014 Bulletin Release
This month, we’re releasing four security bulletins addressing six unique CVEs in Microsoft Windows, Office, and Dynamics AX. All updates this month are rated Important.
http://blogs.technet.com/b/msrc/archive/2014/01/14/a-look-into-the-future-and-the-january-2014-bulletin-release.aspx
Alle Benutzer werden aufgefordert die verfügbaren Updates so schnell wie möglich zu installieren!!