3Articles
2Categories
2014-04-08Date
⚠️ VULNERABILITY DISCLOSURE 2[−]
8 AprAssessing risk for the April 2014 security updatesToday we released four security bulletins addressing 11 unique CVE’s. Two bulletins have a maximum severity rating of Critical while the other two have a maximum severity rating of Important. We hope that the table below helps you prioritize the deployment of the updates appropri…MSRC.MICROSOFT.COM
8 AprMS14-019 – Fixing a binary hijacking via .cmd or .bat fileCommand (.cmd) and batch (.bat) files can be directly provided as input to the CreateProcess as if it is an executable. CreateProcess uses the cmd.exe automatically to run the input .cmd or .bat. Today, with the bulletin MS14-019 we are fixing a vulnerability, where in particular…MSRC.MICROSOFT.COM
📋 SECURITY BULLETINS 1[−]
8 AprThe April 2014 Security UpdatesT. S. Elliot once said, “What we call the beginning is often the end. And to make an end is to make a beginning. The end is where we start from.” So as we put one season to bed, let’s start another by looking at the April security updates. Today, we release four bulletins to addr…MSRC.MICROSOFT.COM