MS – SECURITY

MS17-020 – Important: Security Update for Windows DVD Maker (3208223) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 14, 2017): Bulletin published.Summary: This security update resolves an information disclosure vulnerability in Windows DVD Maker. The vulnerability could allow an attacker to obtain information to further compromise a target system. Source: MS17-020 – Important: Security Update for Windows DVD Maker (3208223) – Version: 1.0

MS17-007 – Critical: Cumulative Security Update for Microsoft Edge (4013071) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (March 14, 2017): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Edge. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited these vulnerabilities could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Source: MS17-007 – Critical: Cumulative Security Update for Microsoft Edge (4013071) – Version: 1.0

MS17-023 – Critical: Security Update for Adobe Flash Player (4014329) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (March 14, 2017): Bulletin published.Summary: This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, and Windows 10. Source: MS17-023 – Critical: Security Update for Adobe Flash Player (4014329) – Version: 1.0

MS17-014 – Important: Security Update for Microsoft Office (4013241) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 14, 2017): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Office. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights. Source: MS17-014 – Important: Security Update for Microsoft Office (4013241) – Version: 1.0

MS17-016 – Important: Security Update for Windows IIS (4013074) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (March 14, 2017): Click here to enter text.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker with access to the local system executes a malicious application. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights. Source: MS17-016 – Important: Security Update for Windows IIS (4013074) – Version: 1.0