??
Hello, we are Microsoft Greater China Security Support team.
Microsoft released 8 new security bulletins on June 10, 2015 in Beijing Time, of which 2 were critical levels and 6 were critical levels, fixing Microsoft Windows, Microsoft Office, Internet Explorer, and Vulnerability in exchange. The vulnerability in ms15-056 cve-2015-1765 and ms15-060 in the cve-2015-1756 has been publicly disclosed, ms15-061 the vulnerability cve-2015-2360, Microsoft has found an attack to exploit the vulnerability.
Meanwhile
A security patch was re-released:
Security Bulletin ms15-046 | Vulnerability in Microsoft Office could Allow Remote Code execution (3057181)
To resolve the issue with security updates that apply to all affected Microsoft Office 2010 software, Microsoft has republished ms15-046 to fully resolve cve-2015-1682. To resolve the issue with security updates that apply to all affected Microsoft Office 2010 software, Microsoft has republished ms15-046 to fully resolve cve-2015-1682. Customers running other Microsoft Office software do not need to take any action.
Two security bulletins were re-released:
Microsoft Security Advisory 2962393 | Juniper Networks Windows in-box Junos Pulse Client
Microsoft has released a Juniper Networks Windows in-box Junos Pulse VPN Client Update (3062760). This update resolves the vulnerability that is described in Juniper Security advisory JSA29833. Customers who are not using the Juniper VPN solution are not vulnerable to this vulnerability.
Microsoft Security Advisory 2755801 | Update for vulnerabilities in Adobe Flash Player in Internet Explorer
Microsoft for Internet Explorer 10 on Windows 8, Windows Server 2012, and Windows RT, and Windows 8.1, Windows Server R2, Wind Internet Explorer 11 on ows RT 8.1, Windows Technical Preview, and Windows Server Technical Preview released an update (3065820). This update resolves the vulnerability that is described in Adobe security bulletin apsb15-11. For more information about this update, including download links, see Microsoft Knowledge Base article 3065820.
The following table outlines the security bulletins for this month, sorted by severity.
Bulletin ID |
Bulletin Title and executive summary |
highest severity level |
Vulnerability Impact |
restart requirements |
Affected Software |
ms15-056 |
severe |
remote code execution |
requires restart |
microsoft Windows, Internet Explorer |
ms15-057 |
serious |
remote code execution |
may need to restart |
microsoft Windows |
ms15-059 |
important |
remote code execution |
may need to restart |
microsoft Office |
ms15-060 |
important |
remote code execution |
|
microsoft Windows |
ms15-061 |
windows kernel-mode driver could allow elevation of privilege (3057839) |
important |
elevation of privilege |
|
microsoft Windows |
ms15-062 |
active Directory Federation Service could allow elevation of privilege (3062577) |
important |
|
|
microsoft Windows |
ms15-063 |
windows Kernel could Allow elevation of privilege (3063858) |
important |
|
|
microsoft Windows |
ms15-064 |
Vulnerability in Microsoft Exchange Server could Allow elevation of privilege (3062157) |
Important |
Privilege elevation |
No restart required |
Microsoft Exchange Server |
For more information, refer to the June 2015 security Bulletin Summary:
Https://technet.microsoft.com/zh-cn/library/security/ms15-jun.aspx
20150610, Microsoft June 10 Released 8 security patches