Jump to content


Photo

MS Security Updates - March 2017


  • Please log in to reply
5 replies to this topic

#1 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,046 posts

Posted 14 March 2017 - 12:55 PM

FYI...

- https://blogs.techne...update-release/
Mar 14, 2017 - "Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found on the Security Update Guide*..."

Security Update Guide
* https://portal.msrc....curity-guidance
14-Mar-17

March 2017 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1
- https://support.micr...ver-2008-r2-sp1
Mar 14, 2017 - Rev: 11

Windows 8.1 and Windows Server 2012 R2 update history
- https://support.micr...-update-history
Mar 14, 2017 - Rev: 129

March 2017 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2
- https://support.micr...-server-2012-r2
Mar 14, 2017 - Rev: 11

Windows 10 Version 1607 and Windows Server 2016
KB4013429 (OS Build 14393.953)
- https://support.micr...pdate-kb4013429
Mar 14, 2017 - Rev: 48

> https://www.catalog....spx?q=KB4012212

> https://www.catalog....spx?q=KB4012213

> https://www.catalog....spx?q=KB4013429
___

Microsoft Security Bulletin Summary for March 2017
- https://technet.micr...curity/ms17-mar
Mar 14, 2017 - "This bulletin summary lists security bulletins released for March 2017..."
(18 total)

Microsoft Security Bulletin MS17-006 - Critical
Cumulative Security Update for Internet Explorer (4013073)
- https://technet.micr...curity/MS17-006
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Internet Explorer

Microsoft Security Bulletin MS17-007 - Critical
Cumulative Security Update for Microsoft Edge (4013071)
- https://technet.micr...curity/MS17-007
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Edge

Microsoft Security Bulletin MS17-008 - Critical
Security Update for Windows Hyper-V (4013082)
- https://technet.micr...curity/MS17-008
Critical - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-009 - Critical
Security Update for Microsoft Windows PDF Library (4010319)
- https://technet.micr...curity/MS17-009
Critical - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-010 - Critical
Security Update for Microsoft Windows SMB Server (4013389)
- https://technet.micr...curity/MS17-010
Critical - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-011 - Critical
Security Update for Microsoft Uniscribe (4013076)
- https://technet.micr...curity/MS17-011
Critical - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-012 - Critical
Security Update for Microsoft Windows (4013078)
- https://technet.micr...curity/MS17-012
Critical - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-013 - Critical
Security Update for Microsoft Graphics Component (4013075)
- https://technet.micr...curity/MS17-013
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Office, Skype for Business,  Microsoft Lync, Microsoft Silverlight

Microsoft Security Bulletin MS17-014 - Important
Security Update for Microsoft Office (4013241)
- https://technet.micr...curity/MS17-014
Important - Remote Code Execution - May require restart - Microsoft Office, Microsoft Office Services and Web Apps,
Microsoft Server Software, Microsoft Communications Platforms and Software

Microsoft Security Bulletin MS17-015 - Important
Security Update for Microsoft Exchange Server (4013242)
- https://technet.micr...curity/MS17-015
Important - Remote Code Execution - Requires restart - Microsoft Exchange

Microsoft Security Bulletin MS17-016 - Important
Security Update for Windows IIS (4013074)
- https://technet.micr...curity/MS17-016
Important - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-017 - Important
Security Update for Windows Kernel (4013081)
- https://technet.micr...curity/MS17-017
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-018 - Important
Security Update for Windows Kernel-Mode Drivers (4013083)
- https://technet.micr...curity/MS17-018
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-019 - Important
Security Update for Active Directory Federation Services (4010320)
- https://technet.micr...curity/MS17-019
Important - Information Disclosure - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-020 - Important
Security Update for Windows DVD Maker (3208223)
- https://technet.micr...curity/MS17-020
Important - Information Disclosure - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-021 - Important
Security Update for Windows DirectShow (4010318)
- https://technet.micr...curity/MS17-021
Important - Information Disclosure - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-022 - Important
Security Update for Microsoft XML Core Services (4010321)
- https://technet.micr...curity/MS17-022
Important - Information Disclosure - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS17-023 - Critical
Security Update for Adobe Flash Player (4014329)
- https://technet.micr...curity/MS17-023
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Adobe Flash Player
___

MS17-006: http://www.securityt....com/id/1038008
MS17-007: http://www.securityt....com/id/1038006
MS17-008: http://www.securityt....com/id/1037999
MS17-009: http://www.securityt....com/id/1037989
MS17-010: http://www.securityt....com/id/1037991
MS17-011: http://www.securityt....com/id/1037992
MS17-012: http://www.securityt....com/id/1038001
MS17-013: http://www.securityt....com/id/1038002
MS17-014: http://www.securityt....com/id/1038010
- http://www.securityt....com/id/1038019
- http://www.securityt....com/id/1038020
MS17-015: http://www.securityt....com/id/1038011
MS17-016: http://www.securityt....com/id/1038012
MS17-017: http://www.securityt....com/id/1038013
MS17-018: http://www.securityt....com/id/1038017
MS17-019: http://www.securityt....com/id/1038018
MS17-020: http://www.securityt....com/id/1038015
MS17-021: http://www.securityt....com/id/1038016
MS17-022: http://www.securityt....com/id/1038014
___

March 2017 Office Update Release
- https://blogs.techne...update-release/
Mar 14, 2017 - "... This month, there are 28 security updates (2 bulletin) and 27 non-security updates.
Security bulletins:
MS17-013: https://technet.micr...y/ms17-013.aspx
MS17-014: https://technet.micr...y/ms17-014.aspx
All of the security and non-security updates are listed in KB article 4013886
- https://support.micr...icrosoft-office
A new version of Office 2013 Click-To-Run is available: 15.0.4911.1002
A new version of Office 2010 Click-To-Run is available: 14.0.7179.5002"
___

ISC Analysis:
- https://isc.sans.edu...l?storyid=22185
Mar 14 2017 - "... large number of bulletins (18 total, which includes the Adobe Flash bulletin)
... You can review the patch summary here:
> https://isc.sans.edu...wday=2017-03-14 "

Qualys Analysis:
- https://blog.qualys....osoft-for-march
Mar 14, 2017 - "Today Microsoft released a massive security update consisting of 17 security bulletins that fixed a total of -134- vulnerabilities. Out of the 17 security bulletins 8 were marked as Critical which could lead to remote code execution while the remaining were marked as Important. Since there were no patches released for February, in one way, a massive update was expected this month. We also liked the fact that Microsoft kept the older way of clubbing KB articles and patches in security bulletins which, in our opinion, is easy to read and provides better overall picture... Overall today is going to be very busy for IT department in organizations of all sizes due to the large number of client as well as server patches to be installed. But most people will be pleasantly surprised as Microsoft kept the older way of clubbing KB articles into security bulletins."
 

:ph34r: :ph34r: :ph34r:


Edited by AplusWebMaster, 15 March 2017 - 03:35 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.


#2 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,046 posts

Posted 17 March 2017 - 04:05 AM

FYI...

Microsoft SMBv1 Vulnerability
- https://www.us-cert....1-Vulnerability
March 16, 2017 - "Microsoft has released a security update to address a vulnerability in implementations of Server Message Block 1.0 (SMBv1). Exploitation of this vulnerability could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review Microsoft Security Bulletin MS17-010* and apply the update. For more information, see the Information Assurance Advisory** and US-CERT's SMB Security Best Practices guidance***."
* https://technet.micr...curity/MS17-010
March 14, 2017
** https://www.iad.gov/...e-block-1-0.cfm
16 March 2017
*** https://www.us-cert....-Best-Practices
Last revised: March 16, 2017
___

- https://www.us-cert....-Best-Practices
Last revised: March 16, 2017 - "In response to public reporting of a potential Server Message Block (SMB) vulnerability, US-CERT is providing known best practices related to SMB. This service is universally available for Windows systems, and legacy versions of SMB protocols could allow a remote attacker to obtain sensitive information from affected systems. US-CERT recommends that users and administrators consider:
    disabling SMBv1 and
    blocking all versions of SMB at the network boundary by blocking TCP port 445 with related protocols on UDP ports 137-138 and TCP port 139, for all boundary devices.
US-CERT cautions users and administrators that disabling or blocking SMB may create problems by obstructing access to shared files, data, or devices. The benefits of mitigation should be weighed against potential disruptions to users. For more information on SMB, please review Microsoft Security Advisories 2696547* and 204279**."
* https://support.micr...n-us/kb/2696547
Feb 28, 2017 - Rev: 23
** https://support.micr...en-us/kb/204279
Jan 7, 2008 - Rev: 1
 

:ph34r: :ph34r:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.


#3 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,046 posts

Posted 17 March 2017 - 04:36 AM

FYI...

March Patching Comes In Like a Lion
- http://windowssecret...in-like-a-lion/
March 16, 2017 - "The lack of patches in February means that March’s updates are numerous. Not helping the situation: While Windows 10 updates are cumulative, Office updates may not be depending on your install. Thus we are getting an extra set. It’s a lot to sort through.
Microsoft finally got back to a bit of normal with this month’s release. Windows 10, 8 and 7 all received their normal large cumulative updates, most with a security bent. For Windows 10, the cumulative update also included many fixes for other issues on that platform. And in a bit of trivia only patch-a-holics like me love to keep track of, we have now jumped to Knowledge Base articles that begin with 4. For example, the Windows 10 1607 update is KB4013198.
In addition we received double the amount of Office updates, but remember, if you are running any of the Office 365 versions that support click-to-run, you won’t see the masses of Office updates, you’ll merely get the click to run update dribbled to you over time.
March also meant changes to Microsoft’s communication regarding security bulletins, with the all new Security Portal* as the new location for security guidance and information. However, they are still posting the traditional security bulletin information in the original format, just to ease in the transition."
* https://portal.msrc....curity-guidance

- https://arstechnica....nt-smell-right/
3/16/2017
 

:ph34r: :ph34r:


Edited by AplusWebMaster, 17 March 2017 - 04:56 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.


#4 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,046 posts

Posted 29 March 2017 - 04:30 AM

FYI...

MS17-014: Description of the security update for Excel 2010
- https://support.micr...-2010-kb3191855
"... Note: To apply this security update, you must have the release version of Service Pack 2 for Office 2010 installed on the computer...
Improvements and fixes:
Fixes an issue that causes Excel 2010 to crash when spreadsheets are recalculated. This issue occurs after you install MS17-014: Description of the security update for Excel 2010: March 14, 2017 (KB3178690*)..."
Last Review: Mar 28, 2017 - Rev: 9

* https://support.micr...us/help/3178690
___

- https://blogs.techne...for-excel-2010/
Mar 28, 2017
___

KB3178690 causing excel 2010 to crash
- https://answers.micr...34-884b2d7d057b

- https://support.micr...-2010-kb3191855
___

> http://windowssecret...ut-like-a-lamb/
March 28, 2017
 

:ph34r: :ph34r:


Edited by AplusWebMaster, 29 March 2017 - 10:18 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.


#5 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,046 posts

Posted 30 March 2017 - 09:00 AM

FYI...

Forms in Dynamics CRM 2011 are broken after KB 4013073 for IE11 is installed
- https://support.micr...after-kb-401307
"Forms in Microsoft Dynamics CRM 2011 are not displayed correctly after KB 4013073 is installed on a Windows system that is running Internet Explorer 11... To get the stand-alone package for this update, go to the Microsoft Update Catalog website*..."
Last Review: Mar 22, 2017 - Rev: 29

* http://www.catalog.u...spx?q=kb4016446

MS17-006: Cumulative security update for Internet Explorer: March 14, 2017
- https://support.micr...er-march-14-201
Last Review: Mar 14, 2017 - Rev: 31
 

:ph34r: :ph34r:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.


#6 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,046 posts

Posted 08 April 2017 - 01:42 PM

FYI...

MS17-006: Security update for IE: Mar 14, 2017
- https://support.micr...r-march-14-2017
Last Review: Mar 29, 2017 - Rev: 52

> https://technet.micr...curity/MS17-006
 

:ninja: :ninja: :ninja:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.





Member of

Support SpywareInfo Forum - click the button
PayPal - The safer, easier way to pay online!