MS – SECURITY

MS17-013 – Critical: Security Update for Microsoft Graphics Component (4013075) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (March 14, 2017): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Windows, Microsoft Office, Skype for Business, Silverlight and Microsoft Lync. The most serious of these vulnerabilities could allow remote code execution if a user either visits a specially crafted website or opens a specially crafted document. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Source: MS17-013 – Critical: Security Update for Microsoft Graphics Component (4013075) – Version: 1.0

MS17-022 – Important: Security Update for Microsoft XML Core Services (4010321) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 14, 2017): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow information disclosure if a user visits a malicious website. However, in all cases an attacker would have no way to force a user to click a specially crafted link. An attacker would have to convince a user to click the link, typically by way of an enticement in an email or Instant Messenger message. Source: MS17-022 – Important: Security Update for Microsoft XML Core Services (4010321) – Version: 1.0

MS17-015 – Important: Security Update for Microsoft Exchange Server (4013242) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 14, 2017): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Exchange Server. Source: MS17-015 – Important: Security Update for Microsoft Exchange Server (4013242) – Version: 1.0

MS17-019 – Important: Security Update for Active Directory Federation Services (4010320) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 14, 2017): Bulletin published.Summary: This security update resolves a vulnerability in Active Directory Federation Services (ADFS). The vulnerability could allow information disclosure if an attacker sends a specially crafted request to an ADFS server, allowing the attacker to read sensitive information about the target system. Source: MS17-019 – Important: Security Update for Active Directory Federation Services (4010320) – Version: 1.0

MS17-010 – Critical: Security Update for Microsoft Windows SMB Server (4013389) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (March 14, 2017): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if an attacker sends specially crafted messages to a Windows SMBv1 server. Source: MS17-010 – Critical: Security Update for Microsoft Windows SMB Server (4013389) – Version: 1.0