Security Alert (A15-07-07): Multiple Vulnerabilities in Microsoft Products (July 2015)
15 July 2015
Microsoft has released 14 security bulletins listed below addressing multiple vulnerabilities which affect several Microsoft products or components:
MS15-058 Vulnerabilities in SQL Server Could Allow Remote Code Execution MS15-065 Security Update for Internet Explorer MS15-066 Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution MS15-067 Vulnerability in RDP Could Allow Remote Code Execution MS15-068 Vulnerabilities in Windows Hyper-V Could Allow Remote Code Execution MS15-069 Vulnerabilities in Windows Could Allow Remote Code Execution MS15-070 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution MS15-071 Vulnerability in Netlogon Could Allow Elevation of Privilege MS15-072 Vulnerability in Windows Graphics Component Could Allow Elevation of Privilege MS15-073 Vulnerability in Windows Kernel-Mode Driver Could Allow Elevation of Privilege MS15-074 Vulnerability in Windows Installer Service Could Allow Elevation of Privilege MS15-075 Vulnerabilities in OLE Could Allow Elevation of Privilege MS15-076 Vulnerability in Windows Remote Procedure Call Could Allow Elevation of Privilege MS15-077 Vulnerability in ATM Font Driver Could Allow Elevation of Privilege
Microsoft Internet Explorer 6, 7, 8, 9, 10, 11
Microsoft Office 2007, 2010, 2013, 2013 RT, Office for Mac 2011
Microsoft Office Compatibility Pack, Excel Viewer, Word Viewer
Microsoft SharePoint Server 2007, 2010, 2013
Microsoft SQL Server 2008, 2012, 2014
Microsoft Windows Server 2003, 2008, 2012
Microsoft Windows Vista, 7, 8, 8.1, RT, RT 8.1
A complete list of the affected products can be found in the section "Affected Software" in the Microsoft security bulletin summary available at:
Depending on the vulnerability exploited, a successful attack could lead to elevation of privilege or arbitrary code execution.
Patches for affected products are available from the Microsoft Update website. Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.
Microsoft Update http://update.microsoft.com/microsoftupdate