September 2014 Update Tuesday Brings Fixes For 42 Flaws

There is something for everyone in the Update Tuesday release for this month. Microsoft has started rolling out patches and security fixes for this cycle, and you can grab them from Windows Update.

A total of 42 vulnerabilities are addressed in software like Windows, Internet Explorer, .NET Framework and Lync Serve, though IE only received one Critical update this month. A total of four bulletins this time around, only one of which is rated as Critical.

As Microsoft notes in the announcement, the top deployment priority for customers this month is Internet Explorer, which gets 1 publicly disclosed flaw fixed, along with 36 privately reported ones.

The most serious of this allows an attacked to obtain the same privileges as the logged in user:

“The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user.

Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.”

This patch is aimed at pretty much all active versions of Internet Explorer, from Internet Explorer 6 to Internet Explorer 11.

Refreshing, there are no reports of botched or faulty updates as of this writing. These updates have been flying off from servers since late last night, and it appears that users are deploying them without any major issues.

Regardless, it is best to backup and create a system restore point before installing them.

Please Leave Your Comments Below...