vulnerabilities allow remote code execution and elevation of privilege. Three corrections were classified as “critical”.
Microsoft released on Tuesday (13) eight security bulletins to fix bugs in various versions of its Windows operating system and Internet Explorer browser, and Windows Exchange Server.
corrections are part of the monthly security company, known as Patch Tuesday, which happens every second Tuesday of each month.
security bulletins include vulnerabilities in Windows XP, Windows Vista, Windows Server 2003, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows 7, Windows 8, Windows RT, Microsoft Exchange Server 2007, 2010 and 2013 Internet Explorer that runs on Windows XP machines.
Three of the bulletins were released were rated “critical” – the highest severity and impact of the vulnerability provided by Microsoft.
The first bulletins, the MS13-059 fixes 11 vulnerabilities found in Internet Explorer – this is the only correct forward-browser.
According to the company report, flaws allow remote code execution if a user machine to access a site specially designed for attack using the browser company. If you can successfully exploit the flaw, the attacker can control over the PC according to user settings – ie, if the user-victim has administrator rights, then the attacker will also have.
“Users whose accounts are configured to have fewer user rights on the system could be less impacted than those with administrative rights,” says the report.
The other five patches affect Windows and were classified as “important.” Two of them allow elevation of privilege and the other two allow denial of service (DDoS).
addition of patches, Microsoft also said it will hold a webcast to dispel doubts of consumers. The event takes place on Thursday (15), 15:30 (GMT). To participate, simply visit the link msevents.microsoft.com / CUI / EventDetail.aspx? EventID = 1032540920 & culture = en-US.
For more information on security bulletins, visit technet.microsoft.com/pt-br/Security/Bulletin/MS13-aug.
No comments:
Post a Comment