It is time to get updating as both Microsoft and Adobe released security updates for critical Remote Code Execution vulnerabilities. These types of bugs are the most critical as they allow attackers to remotely execute programs on your computer without your permission and knowledge. Therefore it is important to install these security updates as soon as possible.
As part of Patch Tuesday, Microsoft released 9 security updates that resolve vulnerabilities in Windows, Exchange, Office, Silverlight, Internet Explorer, and Microsoft Edge. Seven of these vulnerabilities could allow Remote Code Execution, so as previously said, it is imperative that you install them as soon as possible. More information about each update can be found in the table below.
| Bulletin Number | KB Number | Title | Bulletin Rating |
|---|---|---|---|
| MS16-010 | 3124557 | Security Update in Microsoft Exchange Server to Address Spoofing | Important |
| MS16-008 | 3124605 | Security Update for Windows Kernel to Address Elevation of Privilege | Important |
| MS16-007 | 3124901 | Security Update for Microsoft Windows to Address Remote Code Execution | Important |
| MS16-006 | 3126036 | Security Update for Silverlight to Address Remote Code Execution | Critical |
| MS16-005 | 3124584 | Security Update for Windows Kernel-Mode Drivers to Address Remote Code Execution | Critical |
| MS16-004 | 3124585 | Security Update for Microsoft Office to Address Remote Code Execution | Critical |
| MS16-003 | 3125540 | Cumulative Security Update for JScript and VBScript to Address Remote Code Execution | Critical |
| MS16-002 | 3124904 | Cumulative Security Update for Microsoft Edge | Critical |
| MS16-001 | 3124903 | Cumulative Security Update for Internet Explorer | Critical |
Adobe also released critical updates in their Adobe Reader and Adobe Acrobat products. These updates resolve the CVE-2016-0931, CVE-2016-0932, CVE-2016-0933, CVE-2016-0934, CVE-2016-0935, CVE-2016-0936, CVE-2016-0937, CVE-2016-0938, CVE-2016-0939, CVE-2016-0940, CVE-2016-0941, CVE-2016-0942, CVE-2016-0943, CVE-2016-0944, CVE-2016-0945, CVE-2016-0946, CVE-2016-0947 vulnerabilities. Out of the 17 vulnerabilities patched by these updates, 16 of them could lead to remote code execution. More information about how to update your Adobe product can be found below.
| Product | Updated Versions | Platform | Availability |
|---|---|---|---|
| Acrobat DC | 15.010.20056 and earlier versions | Windows and Macintosh |
|
| Acrobat Reader DC | 15.010.20056 and earlier versions | Windows and Macintosh | Download Center |
| Acrobat DC | 15.006.30119 and earlier versions | Windows and Macintosh | Windows Macintosh |
| Acrobat Reader DC | 15.006.30119 and earlier versions | Windows and Macintosh | Windows Macintosh |
| Acrobat XI | 11.0.14 and earlier versions | Windows and Macintosh | Windows Macintosh |
| Reader XI | 11.0.14 and earlier versions | Windows and Macintosh | Windows Macintosh |
Break down IAM silos like Bitpanda, KnowBe4, and PathAI
Broken IAM isn't just an IT problem - the impact ripples across your whole business.
This practical guide covers why traditional IAM practices fail to keep up with modern demands, examples of what "good" IAM looks like, and a simple checklist for building a scalable strategy.
Comments
softeyes - 9 years ago
Grinler: My computers have never been happier, as I follow your security information and updates! Thank you!