Microsoft Patch Tuesday is September 9, 2014. It will provide four updates designed to make your computers and servers more secure.
One of the bulletins, rated critical, is pointed at Internet Explorer to address a number of remote code execution vulnerabilities in the browser. Since the Windows operating systems is dependent on Internet Explorer, it is imperative that this patch is applied. However, even after the patch, we recommend that you use Chrome as you primary browser.
The three remaining bulletins, all rated important by Microsoft, include a privilege-escalation bug in Windows 8 and 8.1 as well as Windows Server 2012 and RT.
Another bulletin patches a .NET denial-of-service vulnerability in Windows Server 2003, 2008 and 2012, and on the client side OS back to Vista.
Another denial-of-service bug is expected to be patched in Microsoft’s Lync instant messaging and collaboration software.
In August, Microsoft shipped nine fixes in total for 37 bugs in its software. Of note, one of the two critical fixes last month remediated 26 bugs in IE, of which the most severe could allow remote code execution (RCE).
Microsoft was also forced to reissue a problematic update patch (MS14-045) to fix a release last month that caused some user systems to crash.
Microsoft will also release a new version of the Windows Malicious Software Removal Tool and probably some as-yet undisclosed number of non-security updates to various Windows versions. It has also become popular for other companies, most prominently Adobe, to release security updates for their own products on that day.
The final update will fix a denial of service bug in Lync Server 2010 and 2013 and is rated Important.
|
Bulletin ID |
Maximum Severity Rating and Vulnerability Impact |
Restart Requirement |
Affected Software |
|---|---|---|---|
|
Bulletin 1 |
Critical |
Requires restart |
Microsoft Windows, |
|
Bulletin 2 |
Important |
May require restart |
Microsoft Windows, |
|
Bulletin 3 |
Important |
Requires restart |
Microsoft Windows |
|
Bulletin 4 |
Important |
Does not require restart |
Microsoft Lync Server |
|
Windows Server 2003 |
|||
|
Bulletin Identifier |
Bulletin 1 |
Bulletin 2 |
Bulletin 3 |
|
Aggregate Severity Rating |
None |
||
|
Windows Server 2003 Service Pack 2 |
Internet Explorer 6 Internet Explorer 7 Internet Explorer 8 |
Windows Server 2003 Service Pack 2 |
Not applicable |
|
Windows Server 2003 x64 Edition Service Pack 2 |
Internet Explorer 6 Internet Explorer 7 Internet Explorer 8 (Moderate) |
Windows Server 2003 x64 Edition Service Pack 2 |
Not applicable |
|
Windows Server 2003 with SP2 for Itanium-based Systems |
Internet Explorer 6 Internet Explorer 7 |
Windows Server 2003 with SP2 for Itanium-based Systems |
Not applicable |
|
Windows Vista |
|||
|
Bulletin Identifier |
Bulletin 1 |
Bulletin 2 |
Bulletin 3 |
|
Aggregate Severity Rating |
None |
||
|
Windows Vista Service Pack 2 |
Internet Explorer 7 Internet Explorer 8 Internet Explorer 9 |
Windows Vista Service Pack 2 |
Not applicable |
|
Windows Vista x64 Edition Service Pack 2 |
Internet Explorer 7 Internet Explorer 8 Internet Explorer 9 |
Windows Vista x64 Edition Service Pack 2 |
Not applicable |
|
Windows Server 2008 |
|||
|
Bulletin Identifier |
Bulletin 1 |
Bulletin 2 |
Bulletin 3 |
|
Aggregate Severity Rating |
None |
||
|
Windows Server 2008 for 32-bit Systems Service Pack 2 |
Internet Explorer 7 Internet Explorer 8 Internet Explorer 9 |
Windows Server 2008 for 32-bit Systems Service Pack 2 |
Not applicable |
|
Windows Server 2008 for x64-based Systems Service Pack 2 |
Internet Explorer 7 Internet Explorer 8 Internet Explorer 9 |
Windows Server 2008 for x64-based Systems Service Pack 2 |
Not applicable |
|
Windows Server 2008 for Itanium-based Systems Service Pack 2 |
Internet Explorer 7 |
Windows Server 2008 for Itanium-based Systems Service Pack 2 |
Not applicable |
|
Windows 7 |
|||
|
Bulletin Identifier |
Bulletin 1 |
Bulletin 2 |
Bulletin 3 |
|
Aggregate Severity Rating |
None |
||
|
Windows 7 for 32-bit Systems Service Pack 1 |
Internet Explorer 8 Internet Explorer 9 Internet Explorer 10 Internet Explorer 11 |
Windows 7 for 32-bit Systems Service Pack 1 |
Not applicable |
|
Windows 7 for x64-based Systems Service Pack 1 |
Internet Explorer 8 Internet Explorer 9 Internet Explorer 10 Internet Explorer 11 |
Windows 7 for x64-based Systems Service Pack 1 |
Not applicable |
|
Windows Server 2008 R2 |
|||
|
Bulletin Identifier |
Bulletin 1 |
Bulletin 2 |
Bulletin 3 |
|
Aggregate Severity Rating |
None |
||
|
Windows Server 2008 R2 for x64-based Systems Service Pack 1 |
Internet Explorer 8 Internet Explorer 9 Internet Explorer 10 Internet Explorer 11 |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 |
Not applicable |
|
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 |
Internet Explorer 8 |
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 |
Not applicable |
|
Windows 8 and Windows 8.1 |
|||
|
Bulletin Identifier |
Bulletin 1 |
Bulletin 2 |
Bulletin 3 |
|
Aggregate Severity Rating |
|||
|
Windows 8 for 32-bit Systems |
Internet Explorer 10 |
Windows 8 for 32-bit Systems |
Windows 8 for 32-bit Systems |
|
Windows 8 for x64-based Systems |
Internet Explorer 10 |
Windows 8 for x64-based Systems |
Windows 8 for x64-based Systems |
|
Windows 8.1 for 32-bit Systems |
Internet Explorer 11 |
Windows 8.1 for 32-bit Systems |
Windows 8.1 for 32-bit Systems |
|
Windows 8.1 for x64-based Systems |
Internet Explorer 11 |
Windows 8.1 for x64-based Systems |
Windows 8.1 for x64-based Systems |
|
Windows Server 2012 and Windows Server 2012 R2 |
|||
|
Bulletin Identifier |
Bulletin 1 |
Bulletin 2 |
Bulletin 3 |
|
Aggregate Severity Rating |
|||
|
Windows Server 2012 |
Internet Explorer 10 |
Windows Server 2012 |
Windows Server 2012 |
|
Windows Server 2012 R2 |
Internet Explorer 11 |
Windows Server 2012 R2 |
Windows Server 2012 R2 |
|
Windows RT and Windows RT 8.1 |
|||
|
Bulletin Identifier |
Bulletin 1 |
Bulletin 2 |
Bulletin 3 |
|
Aggregate Severity Rating |
|||
|
Windows RT |
Internet Explorer 10 |
Windows RT |
Windows RT |
|
Windows RT 8.1 |
Internet Explorer 11 |
Windows RT 8.1 |
Windows RT 8.1 |
|
Server Core installation option |
|||
|
Bulletin Identifier |
Bulletin 1 |
Bulletin 2 |
Bulletin 3 |
|
Aggregate Severity Rating |
None |
||
|
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) |
Not applicable |
Not applicable |
Not applicable |
|
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) |
Not applicable |
Not applicable |
Not applicable |
|
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) |
Not applicable |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) |
Not applicable |
|
Windows Server 2012 (Server Core installation) |
Not applicable |
Windows Server 2012 (Server Core installation) |
Windows Server 2012 (Server Core installation) |
|
Windows Server 2012 R2 (Server Core installation) |
Not applicable |
Windows Server 2012 R2 (Server Core installation) |
Windows Server 2012 R2 (Server Core installation) |
Please remember to restart your Windows Servers and Computers tomorrow morning!
Note: This update takes a considerable amount of time. I started the update at about 5:00am this morning. It is now 8:48am and it is still running.
The best way I found to do Microsoft updates is to leave your computers turned on at night to automatically receive the updates, the reboot the device the next morning. That way you can greatly minimize the downtime.
http://active-technologies.com/content/microsoft-patch-tuesday-september-2014
Many thanks and have a good day,
-- Greg Allen Active Technologies active-technologies.com gallen@active-technologies.com Web Design - Hosting - Internet Search 843-225-5648