지락문화예술공작단

MS16-046 – Important: Security Update for Secondary Logon (3148538) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (April 12, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. An attacker who successfully exploited this vulnerability could run arbitrary code as an administrator. Source: MS16-046 – Important: Security Update for Secondary Logon (3148538) – Version: 1.0

MS16-048 – Important: Security Update for CSRSS (3148528) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (April 12, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow security feature bypass if an attacker logs on to a target system and runs a specially crafted application. Source: MS16-048 – Important: Security Update for CSRSS (3148528) – Version: 1.0

MS16-040 – Critical: Security Update for Microsoft XML Core Services (3148541) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (April 12, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user clicks a specially crafted link that could allow an attacker to run malicious code remotely to take control of the user’s system. However, in all cases an attacker would have no way to force a user to click a specially crafted link. An attacker would have to convince a user to click the link, typically by way of an enticement in an email or Instant Messenger message. Source: MS16-040 – Critical: Security Update for Microsoft XML Core Services (3148541) – Version: 1.0

MS16-049 – Important: Security Update for HTTP.sys (3148795) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (April 12, 2016): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker sends a specially crafted HTTP packet to a target system. Source: MS16-049 – Important: Security Update for HTTP.sys (3148795) – Version: 1.0

MS16-038 – Critical: Cumulative Security Update for Microsoft Edge (3148532) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (April 12, 2016): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Edge. The vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights. Source: MS16-038 – Critical: Cumulative Security Update for Microsoft Edge (3148532) – Version: 1.0