********************************************************************
Title: Microsoft Security Bulletin Minor Revisions
Issued: July 29, 2014
********************************************************************
Summary
=======
The following bulletins have undergone minor revision increments.
Please see the bulletins for more details.
* MS13-098
* MS14-037
* MS14-JUL
Bulletin Information:
=====================
* MS13-098 - Critical
- https://technet.microsoft.com/library/security/ms13-098
- Reason for Revision: V1.6 (July 29, 2014): Revised bulletin to
announce that Microsoft no longer plans to enforce the stricter
verification behavior as a default functionality on supported
releases of Microsoft Windows. It remains available as an
opt-in feature.
- Originally posted: December 10, 2013
- Updated: July 29, 2014
- Bulletin Severity Rating: Critical
- Version: 1.6
* MS14-037 - Critical
- https://technet.microsoft.com/library/security/ms14-037
- Reason for Revision: V1.1 (July 29, 2014): Corrected the
severity table and vulnerability information to add
CVE-2014-4066 as a vulnerability addressed by this update.
This is an informational change only. Customers who have
already successfully installed the update do not have to
take any action.
- Originally posted: July 8, 2014
- Updated: July 29, 2014
- Bulletin Severity Rating: Critical
- Version: 1.1
* MS14-JUL
- https://technet.microsoft.com/library/security/ms14-jul
- Reason for Revision: V1.1 (July 29, 2014): For MS14-037, added
an Exploitability Assessment in the Exploitability Index for
CVE-2014-4066. This is an informational change only.
- Originally posted: July 8, 2014
- Updated: July 29, 2014
- Version: 1.1
Other Information
=================
Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email.
The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all security notifications. However, PGP is not required for reading security notifications, reading security bulletins, or installing security updates. You can obtain the MSRC public PGP key at <https://technet.microsoft.com/security/dn753714>.
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.