Microsoft Security Bulletin
On Tuesday the 14th of JanuaryMicrosoft released the monthly Security Bulletin Summary for January 2014. The summary includes 4 Security Bulletins that cover altogether 6 CVEs - all are classified as important:
- MS14-001 Vulnerabilities in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (2916605)
Vulnerability impact: Remote Code Execution
Word Memory Corruption Vulnerability CVE-2014-0258
Word Memory Corruption Vulnerability CVE-2014-0259
Word Memory Corruption Vulnerability CVE-2014-0260
- MS14-002 Vulnerability in Windows Kernel Could Allow Elevation of Privilege (2914368)
Vulnerability impact: Elevation of Privilege
Kernel NDProxy Vulnerability - CVE-2013-5065
- MS14-003 Vulnerability in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2913602)
Vulnerability impact: Elevation of Privilege
Win32k Window Handle Vulnerability - CVE-2014-0262
- MS14-004 Vulnerability in Microsoft Dynamics AX Could Allow Denial of Service (2880826)
Vulnerability impact: Denial of Service
Query Filter DoS Vulnerability – CVE-2014-0261
For more information refer to:
Microsoft Security Bulletin Summary for January 2014
http://technet.microsoft.com/en-us/security/bulletin/ms14-jan
Symantec product detections for Microsoft monthly Security Advisories - January 2014
http://www.symantec.com/business/support/index?page=content&id=TECH213916
Oracle Critical Patch Update Advisory
Oracle released Critical Patch Update Advisory for January 2014 covering multiple security vulnerabilities in various Oracle products including Oracle DB and Oracle Java.
For more information refer to the following Advisory:
Oracle Critical Patch Update Advisory - January 2014
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
Adobe Security Updates
Adobe has released security updates for Adobe Reader, Acrobat XI, Adobe AIR and Adobe Flash Player. Those cover following products:
- Adobe Reader XI (11.0.05) and earlier 11.x versions for Windows and Macintosh
- Adobe Reader X (10.1.8) and earlier 10.x versions for Windows and Macintosh
- Adobe Acrobat XI (11.0.05) and earlier 11.x versions for Windows and Macintosh
- Adobe Acrobat X (10.1.8) and earlier 10.x versions for Windows and Macintosh
- Adobe Flash Player 11.9.900.170 and earlier versions for Windows and Macintosh
- Adobe Flash Player 11.2.202.332 and earlier versions for Linux
- Adobe AIR 3.9.0.1380 and earlier versions for Windows and Macintosh
- Adobe AIR 3.9.0.1380 and earlier versions for Android
- Adobe AIR 3.9.0.1380 SDK and earlier versions
- Adobe AIR 3.9.0.1380 SDK & Compiler and earlier versions
For more information refer to:
Security updates available for Adobe Reader and Acrobat - APSB14-01
http://helpx.adobe.com/security/products/acrobat/apsb14-01.html
Security updates available for Adobe Flash Player - APSB14-02
http://helpx.adobe.com/security/products/flash-player/apsb14-02.html