Microsoft has released a Security Bulletin Summary for November 2014 that will help you address vulnerabilities in Windows, Office, Exchange, .NET Framework, SharePoint, and Internet Explorer. This month, Microsoft has released 14 security bulletins (4 Critical) and updates to address them. These vulnerabilities could allow remote code execution, elevation of privilege, or security feature bypass.
Here is a quick summary of the various vulnerabilities and fixes from this month’s Microsoft Security Bulletin:
- A total of 14 security bulletins addressing 33 vulnerabilities have been released this month.
- Affected by vulnerabilities are Windows, Office, Exchange, .NET Framework, SharePoint, and Internet Explorer.
- 4 of these 14 security bulletins are rated Critical.
- Top deployment this month is MS14-065, a critical bulletin that addresses issues in Internet Explorer.
Who all are affected?
Vulnerabilities in Internet Explorer are rated as most critical.
In Windows Server 2003 Service Pack 2- Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8 are affected.
In Windows Server 2003 x64 Edition Service Pack 2-Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8 are affected.
In Windows Server 2003 with SP2 for Itanium-based Systems-Internet Explorer 6 and Internet Explorer 7 are affected.
In Windows Vista Service Pack 2-Internet Explorer 7, Internet Explorer 8 and Internet Explorer 9 are affected.
In Windows Vista x64 Edition Service Pack 2-Internet Explorer 7, Internet Explorer 8 and Internet Explorer 9 are affected.
In Windows Server 2008 for 32-bit Systems Service Pack 2-Internet Explorer 7, Internet Explorer 8 and Internet Explorer 9 are affected.
In Windows Server 2008 for x64-based Systems Service Pack 2-Internet Explorer 7, Internet Explorer 8 and Internet Explorer 9 are affected.
In Windows Server 2008 for Itanium-based Systems Service Pack 2-Internet Explorer 7 is affected.
In Windows 7 for 32-bit Systems Service Pack 1-Internet Explorer 8, Internet Explorer 9, Internet Explorer 10 and Internet Explorer 11 are affected.
In Windows 7 for x64-based Systems Service Pack 1-Internet Explorer 8, Internet Explorer 9, Internet Explorer 10 and Internet Explorer 11 are affected.
In Windows Server 2008 R2 for x64-based Systems Service Pack 1-Internet Explorer 8, Internet Explorer 9, Internet Explorer 10 and Internet Explorer 11 are affected.
In Windows Server 2008 R2 for Itanium-based Systems Service Pack 1-Internet Explorer 8 is affected.
In Windows 8 for 32-bit Systems-Internet Explorer 10 is affected.
In Windows 8 for x64-based Systems-Internet Explorer 10 is affected.
In Windows 8.1 for 32-bit Systems-Internet Explorer 11 is affected.
In Windows 8.1 for x64-based Systems-Internet Explorer 11 is affected.
In Windows Server 2012-Internet Explorer 10 is affected.
In Windows Server 2012 R2-Internet Explorer 11 is affected.
In Windows RT-Internet Explorer 10 is affected.
In Windows RT 8.1-Internet Explorer 11 is affected.
However, these vulnerabilities did not affect Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation), Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation), Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation), Windows Server 2012 (Server Core installation), and Windows Server 2012 R2 (Server Core installation).
For more information on all the affected software visit the following Microsoft website: https://technet.microsoft.com/en-us/library/security/ms14-nov.aspx
For information about how to receive automatic notifications whenever Microsoft security bulletins are issued, visit Microsoft Technical Security Notifications.