Microsoft Security Bulletin Release for February 2015

[Corrine]

Microsoft released nine (9) bulletins. Three (3) bulletins are identified as Critical and the remaining six (6) are rated Important in severity.

The updates address 56 unique Common Vulnerabilities and Exposures (CVEs) in Microsoft Windows, Microsoft Office, Internet Explorer, and Microsoft Server software. Details about the CVEs can be found in the Microsoft Security Bulletin for February 2015.


Also of note:

Security Advisory 3009008 has been updated. Internet Explorer 11 will prevent insecure fallback to SSL 3.0 for Protected Mode sites. Additional information about this update is available in the IE Blog.

MS14-083 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution was re-released.

Security Advisory 3004375, Update for Windows Command Line Auditing, was released.

 

[Corrine]

Note: Many people are reporting that KB3001652, Update rollup for Visual Studio 2010 Tools for Office Runtime, is taking a very long time to install. This has been reported on both Windows 7 and Windows 8x, 32- and 64-bit.

You may want to hold off on that update if offered or install it separately from the other updates.

 

[Corrine]

It appears that KB3001652 has been pulled.

 

[x BlueRobot]

Everything has installed without problems for me. I was never offered KB3001652 luckily.

 

[Corrine]

If you do not use automatic updates, note that you will be offered yet another update, KB 3034196. This is because update KB 3021952 must be installed before installing update KB 3034196. You will need another restart to complete the installation of KB 3034196.

 

[blueelvis]

Wow, 56 vulnerabilities. Quite a big number.