Today, January 13th, Microsoft is releasing its first Patch Tuesday of 2015. Patch Tuesday in January brings eight security updates: one of them is classified as critical, the remaining seven updates are classified as important and close eight security vulnerabilities in Microsoft Windows.
Channel | Publish Date | Thumbnail & View Count | Actions |
---|---|---|---|
Nexific | 2015-01-21 21:28:12 | 859,501 Views |
Microsoft Windows 10 Event January 2015 (full)
All updates released in January affect all major versions of Windows, including Windows 8.x, Windows RT 8.x, Windows 7, and Windows Server. Five of the updates address elevation of privilege issues that could allow the vulnerability to be exploited and thus compromise the operating system. Two of the security updates address vulnerabilities that could allow security features to be bypassed. The final update addresses a vulnerability in the Network Policy Server's RADIUS implementation that could lead to a denial of service.
This Patch Tuesday also addresses the issue. Microsoft criticized Google for releasing information two days before the release. The update is defined as KB3023266: "The vulnerability could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An authenticated attacker who successfully exploited this vulnerability could bypass existing permission checks performed during cache modification in the Microsoft Windows Application Compatibility Component and execute arbitrary code with elevated privileges."
Microsoft also provides the final update for Windows 19 Build 9879, which is a security update for Flash in Internet Explorer.