??
Hello, we are Microsoft Greater China Security Support team.
Microsoft at GMT -Years9Month9The day released AA new security bulletin, where5A severity rating,7To a critical level, fixedMicrosoft Windows、Microsoft Office、Internet Explorer、Microsoft. NET Framework、Microsoft Lync、Exchange ServerAndMicrosoft EdgeVulnerabilities in the software. whichms15-094The vulnerabilities that are fixed incve-2015-2542、ms15-095The vulnerabilities that are fixed incve-2015-2542、ms15-097The vulnerabilities that are fixed incve-2015-2546、ms15-100The vulnerabilities that are fixed incve-2015-2509has been publicly disclosed andms15-101The vulnerabilities that are fixed incve-2015-2526has been publicly disclosed.
At the same time, a new security bulletin was released:
Security Bulletins 3083992 | improved enforced updates for AppLocker Publisher rules
Microsoft announces the launch to improve Windows 7, Windowsserver R2,Windows 8, WindowsServer in Windows8.1 and Windows Server R2 enforces a defense -in-depth update of publisher rules. This update improves some of the publisher rule scenarios for AppLocker . After you apply this defense-in-depth update,AppLocker no longer uses the current user's certificate store for the publisher rule.
Announcement ID |
Announcement Title and Executive summary |
Highest severity Rating and vulnerability impact |
Restart requirements |
The Affected Software |
ms15-094 |
Cumulative security update for Internet Explorer (3089548) |
Serious Remote Code Execution |
Restart required |
Microsoft Windows, Internet Explorer |
ms15-095 |
Microsoft Edge Cumulative Security update (3089665) |
Serious Remote Code Execution |
Restart required |
Microsoft Windows, Microsoft Edge |
ms15-096 |
Vulnerability in Active Directory service could allow denial of service (3072595) |
Important Denial of Service |
Restart required |
Microsoft Windows |
ms15-097 |
Vulnerability in Microsoft graphics component could allow Remote Code execution (3089656) |
Serious Remote Code Execution |
May require a restart |
Microsoft Windows, Microsoft Office, Microsoft Lync |
ms15-098 |
Vulnerability in Windows journal could Allow Remote Code execution (3089669) |
Serious Remote Code Execution |
May require a restart |
Microsoft Windows |
ms15-099 |
Vulnerability in Microsoft Office could Allow Remote Code execution (3089664) |
Serious Remote Code Execution |
May require a restart |
Microsoft Office, Microsoft SharePoint Foundation |
ms15-100 |
Vulnerability in Windows Media Center could Allow Remote Code execution (3087918) |
Important Remote Code Execution |
May require a restart |
Microsoft Windows |
Ms15-101 |
Vulnerability in the. NET Framework could Allow elevation of privilege (3089662) |
Important Privilege elevation |
No restart required |
Microsoft Windows, Microsoft. NET Framework |
ms15-102 |
Vulnerability in Windows task management could allow elevation of privilege (3089657) |
Important Privilege elevation |
Restart required |
Microsoft Windows |
ms15-103 |
Vulnerability in Microsoft Exchange Server could allow information disclosure (3089250) |
Important Information leaks |
May require a restart |
Microsoft Exchange Server |
ms15-104 |
Vulnerability in Skype for Business Server and Microsoft Lync Server could Allow elevation of privilege (3089952) |
Important Privilege elevation |
No restart required |
Skype for Business Server, Microsoft Lync Server |
ms15-105 |
Vulnerability in Windows Hyper-V could allow bypassing security features (3091287) |
Important Security Feature Bypass |
Restart required |
Microsoft Windows |
For more information, please refer to the annual 9 Month Security Bulletin Summary:
https://technet.microsoft.com/zh-cn/library/security/ms15-sep.aspx
Copyright NOTICE: This article for Bo Master original article, without Bo Master permission not reproduced.
20150909, Microsoft September 9 released 12 security patches