[월:] 2016년 03월

MS16-025 – Important: Security Update for Windows Library Loading to Address Remote Code Execution (3140709) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 8, 2016): Click here to enter text.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if Microsoft Windows fails to properly validate input before loading certain libraries. However, an attacker must first gain access to the local system with the ability to execute a malicious application. Source: MS16-025 – Important: Security Update for Windows Library Loading to Address Remote Code Execution (3140709) – Version: 1.0

MS16-031 – Important: Security Update for Microsoft Windows to Address Elevation of Privilege (3140410) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 8, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker is able to log on to a target system and run a specially crafted application. Source: MS16-031 – Important: Security Update for Microsoft Windows to Address Elevation of Privilege (3140410) – Version: 1.0

MS16-032 – Important: Security Update for Secondary Logon to Address Elevation of Privilege (3143141) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 8, 2016): Click here to enter text.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if the Windows Secondary Logon Service fails to properly manage request handles in memory. Source: MS16-032 – Important: Security Update for Secondary Logon to Address Elevation of Privilege (3143141) – Version: 1.0

MS16-024 – Critical: Cumulative Security Update for Microsoft Edge (3142019) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (March 8, 2016): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Edge. The vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights. Source: MS16-024 – Critical: Cumulative Security Update for Microsoft Edge (3142019) – Version: 1.0

MS16-030 – Important: Security Update for Windows OLE to Address Remote Code Execution (3143136) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 8, 2016): Click here to enter text.Summary: TBD Source: MS16-030 – Important: Security Update for Windows OLE to Address Remote Code Execution (3143136) – Version: 1.0