MS – SECURITY

MS16-123 – Important: Security Update for Windows Kernel-Mode Drivers (3192892) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (October 11, 2016): Bulletin published. Summary: This security update resolves vulnerabilities in Microsoft Windows. The more severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that could exploit the vulnerabilities and take control of an affected system. Source: MS16-123 – Important: Security Update for Windows Kernel-Mode Drivers (3192892) – Version: 1.0

MS16-121 – Important: Security Update for Microsoft Office (3194063) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (October 11, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Office. An Office RTF remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle RTF files. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user. Source: MS16-121 – Important: Security Update for Microsoft Office (3194063) – Version: 1.0

MS16-118 – Critical: Cumulative Security Update for Internet Explorer (3192887) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (October 11, 2016): Bulletin published.Summary: This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Source: MS16-118 – Critical: Cumulative Security Update for Internet Explorer (3192887) – Version: 1.0

MS16-OCT – Microsoft Security Bulletin Summary for October 2016 – Version: 1.0 Revision Note: V1.0 (October 11, 2016): Click here to enter text.Summary: This bulletin summary lists security bulletins released for October 2016. Source: MS16-OCT – Microsoft Security Bulletin Summary for October 2016 – Version: 1.0

3181759 – Vulnerabilities in ASP.NET Core View Components Could Allow Elevation of Privilege – Version: 1.0 Revision Note: V1.0 (September 13, 2016): Advisory published.Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in the public versions of ASP.NET Core MVC 1.0.0. This advisory also provides guidance on what developers can do to help ensure that their applications are updated correctly. Source: 3181759 – Vulnerabilities in ASP.NET Core View Components Could Allow Elevation of Privilege – Version: 1.0