Security Alert (A15-06-01): Multiple Vulnerabilities in Microsoft Products (June 2015)
10 June 2015
Microsoft has released 8 security bulletins listed below addressing multiple vulnerabilities which affect several Microsoft products or components:
MS15-056 Cumulative Security Update for Internet Explorer MS15-057 Vulnerability in Windows Media Player Could Allow Remote Code Execution MS15-059 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution MS15-060 Vulnerability in Microsoft Common Controls Could Allow Remote Code Execution MS15-061 Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege MS15-062 Vulnerability in Active Directory Federation Services Could Allow Elevation of Privilege MS15-063 Vulnerability in Windows Kernel Could Allow Elevation of Privilege MS15-064 Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege
Microsoft Exchange Server 2013
Microsoft Internet Explorer 6, 7, 8, 9, 10, 11
Microsoft Office 2007, 2010, 2013, 2013 RT
Microsoft Office Compatibility Pack
Microsoft Windows Media Player 10, 11, 12
Microsoft Windows Server 2003, 2008, 2012
Microsoft Windows Vista, 7, 8, 8.1, RT, RT 8.1
Depending on the vulnerability exploited, a successful attack could lead to elevation of privilege or arbitrary code execution.
Patches for affected products are available from the Microsoft Update website. Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.
Microsoft Update http://update.microsoft.com/microsoftupdate