Microsoft
This month’s Patch Tuesday brought with it 4 fixes for
critical flaws including a patch for Windows 10. Altogether there were 14 bulletins covering
flaws in IE, Office, Windows and Window Server.
The four major fixes are as follows:
MS15-079
affects Internet Explorer. This patch
fixes flaws having to do with memory corruption that may allow an attacker to
gain access after a user has visited a specific webpage.
MS15-080 concerns
.Net Framework, Silverlight and Microsoft Lynch where vulnerabilities might
allow an attacker to gain administrative rights to a computer if the user was
tricked into visiting a site with malicious code on it.
MS15-081
deals with flaws in Office allowing an attacker to run code from a remote
location as the user that is logged in if a malicious file was opened.
MS15-091 applies
to those users currently running Windows 10.
It deals with Windows’s 10 newest browser which is called Edge. If a user visits a specific website,
malicious code would allow an attacker to access the computer as a logged-in
user.
There are various other fixes for Windows 10 for performance
and additional fixes that are listed as important which affect Office, Windows
and Windows Server.
Glasser Tech recommends waiting for a while before switching
over to Windows 10.
Further details on other updates can be found here MicrosoftSecurity Bulletin
Adobe Flash Player also received an update for
vulnerabilities. Nearly every vulnerability addressed by Adobe could lead to code execution – that includes 15 use-after-free vulnerabilities, eight memory corruption vulnerabilities, five type confusion vulnerabilities, and five buffer overflow and heap buffer overflow bugs, as well as an integer overflow flaw.
For more information on Adobe updates AdobeSecurity Bulletin
Contact us to find out how you can become "Proactive" instead of "Reactive".
