Qualys Vulnerability R&D Lab has released new vulnerability checks in the Qualys Cloud Platform to protect organizations against 67 vulnerabilities that were fixed in 7 bulletins announced today by Microsoft. Customers can immediately audit their networks for these and other new vulnerabilities by accessing their Qualys subscription. Visit Qualys Security Blog to prioritize remediation.
Non-Qualys customers can audit their network for these and other vulnerabilities by signing up for a Qualys Free Trial, or by trying Qualys Community Edition.
Microsoft has released 7 security bulletins to fix newly discovered flaws in their software. Qualys has released the following checks for these new vulnerabilities:
A denial of service vulnerability exists in the Windows TCP/IP networking protocol implementation, that could cause the targeted system to stop responding to legitimate user queries until a system restart.
This security update is rated Important for all supported editions of Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, Windows RT, Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1.
Successful exploitation could allow an unauthenticated, remote attacker to cause the targeted system to stop responding to legitimate user queries, leading to a denial of service condition.
Refer to MS14-031 for further information.
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS14-031 Windows 7 for 32-bit Systems Service Pack 1
MS14-031 Windows 7 for x64-based Systems Service Pack 1
MS14-031 Windows 8 for 32-bit Systems
MS14-031 Windows 8 for x64-based Systems
MS14-031 Windows 8.1 for 32-bit Systems
MS14-031 Windows 8.1 for x64-based Systems
MS14-031 Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
MS14-031 Windows Server 2008 R2 for x64-based Systems Service Pack 1
MS14-031 Windows Server 2008 R2 for x64-based Systems Service Pack 1
MS14-031 Windows Server 2008 for 32-bit Systems Service Pack 2
MS14-031 Windows Server 2008 for 32-bit Systems Service Pack 2
MS14-031 Windows Server 2008 for Itanium-based Systems Service Pack 2
MS14-031 Windows Server 2008 for x64-based Systems Service Pack 2
MS14-031 Windows Server 2008 for x64-based Systems Service Pack 2
MS14-031 Windows Server 2012
MS14-031 Windows Server 2012
MS14-031 Windows Server 2012 R2
MS14-031 Windows Server 2012 R2
MS14-031 Windows Vista Service Pack 2
MS14-031 Windows Vista x64 Edition Service Pack 2
The vulnerability is caused when Remote Desktop does not use robust encryption for an RDP session. The vulnerability could allow tampering if an attacker gains access to the same network segment as the targeted system during an active Remote Desktop Protocol (RDP) session, and then sends specially crafted RDP packets to the targeted system.
This security update is rated Important for all supported editions of Windows 7, Windows 8, Windows 8.1, Windows Server 2012, and Windows Server 2012 R2.
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS14-030 Windows 7 for 32-bit Systems Service Pack 1
MS14-030 Windows 7 for x64-based Systems Service Pack 1
MS14-030 Windows 8 for 32-bit Systems
MS14-030 Windows 8 for x64-based Systems
MS14-030 Windows 8.1 for 32-bit Systems
MS14-030 Windows 8.1 for x64-based Systems
MS14-030 Windows Server 2012
MS14-030 Windows Server 2012
MS14-030 Windows Server 2012 R2
MS14-030 Windows Server 2012 R2
Affected Software:
Microsoft Lync 2010
Microsoft Lync Server 2013
Refer to Microsoft Security Bulletin MS14-032 for further details.
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS14-032(Lync Server 2010)
MS14-032(Lync Server 2013)
An information disclosure vulnerability exists in the way that Microsoft Windows parses XML content. The vulnerability may allow an attacker to access information not otherwise allowed.
The security update for Microsoft XML Core Services 3.0 and Microsoft XML Core Services 6.0 is rated Important for affected releases of Microsoft Windows clients and Low for affected releases of Microsoft Windows servers.
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS14-033 Windows 7 for 32-bit Systems Service Pack 1
MS14-033 Windows 7 for x64-based Systems Service Pack 1
MS14-033 Windows 8 for 32-bit Systems
MS14-033 Windows 8 for x64-based Systems
MS14-033 Windows 8.1 for 32-bit Systems
MS14-033 Windows 8.1 for x64-based Systems
MS14-033 Windows Server 2003 Service Pack 2
MS14-033 Windows Server 2003 Service Pack 2
MS14-033 Windows Server 2003 with SP2 for Itanium-based Systems
MS14-033 Windows Server 2003 with SP2 for Itanium-based Systems
MS14-033 Windows Server 2003 x64 Edition Service Pack 2
MS14-033 Windows Server 2003 x64 Edition Service Pack 2
MS14-033 Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
MS14-033 Windows Server 2008 R2 for x64-based Systems Service Pack 1
MS14-033 Windows Server 2008 R2 for x64-based Systems Service Pack 1
MS14-033 Windows Server 2008 for 32-bit Systems Service Pack 2
MS14-033 Windows Server 2008 for 32-bit Systems Service Pack 2
MS14-033 Windows Server 2008 for Itanium-based Systems Service Pack 2
MS14-033 Windows Server 2008 for x64-based Systems Service Pack 2
MS14-033 Windows Server 2008 for x64-based Systems Service Pack 2
MS14-033 Windows Server 2012
MS14-033 Windows Server 2012
MS14-033 Windows Server 2012 R2
MS14-033 Windows Server 2012 R2
MS14-033 Windows Vista Service Pack 2
MS14-033 Windows Vista x64 Edition Service Pack 2
Microsoft released a security update that addresses the vulnerability by correcting the way that Microsoft Office parses specially crafted files.
This security update is rated Important for supported editions of Microsoft Word 2007 and Microsoft Office Compatibility Pack.
Workaround:
Do not open Office files received from untrusted sources or that you receive unexpectedly from trusted sources. This vulnerability could be exploited when a user opens a specially crafted file.
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS14-034 Microsoft Office 2007 Service Pack 3(Microsoft Word 2007 Service Pack 3)
MS14-034 Microsoft Office Compatibility Pack Service Pack 3
This security update resolves two vulnerabilities in Internet Explorer that exist because of improper handling of objects in the memory. The vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer.
This security update is rated Critical for Internet Explorer 6 (IE 6), Internet Explorer 7 (IE 7), Internet Explorer 8 (IE 8), Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows clients, Moderate for Internet Explorer 6 (IE 6), Internet Explorer 7 (IE 7), Internet Explorer 8 (IE 8), Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows servers.
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS14-035 Windows 7 for 32-bit Systems Service Pack 1(Internet Explorer 10)
MS14-035 Windows 7 for 32-bit Systems Service Pack 1(Internet Explorer 11)
MS14-035 Windows 7 for 32-bit Systems Service Pack 1(Internet Explorer 8)
MS14-035 Windows 7 for 32-bit Systems Service Pack 1(Internet Explorer 9)
MS14-035 Windows 7 for x64-based Systems Service Pack 1(Internet Explorer 10)
MS14-035 Windows 7 for x64-based Systems Service Pack 1(Internet Explorer 11)
MS14-035 Windows 7 for x64-based Systems Service Pack 1(Internet Explorer 8)
MS14-035 Windows 7 for x64-based Systems Service Pack 1(Internet Explorer 9)
MS14-035 Windows 8 for 32-bit Systems(Internet Explorer 10)
MS14-035 Windows 8 for x64-based Systems(Internet Explorer 10)
MS14-035 Windows 8.1 for 32-bit Systems(Internet Explorer 11)
MS14-035 Windows 8.1 for x64-based Systems(Internet Explorer 11)
MS14-035 Windows Server 2003 Service Pack 2(Internet Explorer 6)
MS14-035 Windows Server 2003 Service Pack 2(Internet Explorer 7)
MS14-035 Windows Server 2003 Service Pack 2(Internet Explorer 8)
MS14-035 Windows Server 2003 with SP2 for Itanium-based Systems(Internet Explorer 6)
MS14-035 Windows Server 2003 with SP2 for Itanium-based Systems(Internet Explorer 7)
MS14-035 Windows Server 2003 x64 Edition Service Pack 2(Internet Explorer 6)
MS14-035 Windows Server 2003 x64 Edition Service Pack 2(Internet Explorer 7)
MS14-035 Windows Server 2003 x64 Edition Service Pack 2(Internet Explorer 8)
MS14-035 Windows Server 2008 R2 for Itanium-based Systems Service Pack 1(Internet Explorer 8)
MS14-035 Windows Server 2008 R2 for x64-based Systems Service Pack 1(Internet Explorer 10)
MS14-035 Windows Server 2008 R2 for x64-based Systems Service Pack 1(Internet Explorer 11)
MS14-035 Windows Server 2008 R2 for x64-based Systems Service Pack 1(Internet Explorer 8)
MS14-035 Windows Server 2008 R2 for x64-based Systems Service Pack 1(Internet Explorer 9)
MS14-035 Windows Server 2008 for 32-bit Systems Service Pack 2(Internet Explorer 7)
MS14-035 Windows Server 2008 for 32-bit Systems Service Pack 2(Internet Explorer 8)
MS14-035 Windows Server 2008 for 32-bit Systems Service Pack 2(Internet Explorer 9)
MS14-035 Windows Server 2008 for Itanium-based Systems Service Pack 2(Internet Explorer 7)
MS14-035 Windows Server 2008 for x64-based Systems Service Pack 2(Internet Explorer 7)
MS14-035 Windows Server 2008 for x64-based Systems Service Pack 2(Internet Explorer 8)
MS14-035 Windows Server 2008 for x64-based Systems Service Pack 2(Internet Explorer 9)
MS14-035 Windows Server 2012(Internet Explorer 10)
MS14-035 Windows Server 2012 R2(Internet Explorer 11)
MS14-035 Windows Vista Service Pack 2(Internet Explorer 7)
MS14-035 Windows Vista Service Pack 2(Internet Explorer 8)
MS14-035 Windows Vista Service Pack 2(Internet Explorer 9)
MS14-035 Windows Vista x64 Edition Service Pack 2(Internet Explorer 7)
MS14-035 Windows Vista x64 Edition Service Pack 2(Internet Explorer 8)
MS14-035 Windows Vista x64 Edition Service Pack 2(Internet Explorer 9)
The security update addresses the vulnerabilities by correcting the way Windows handles certain specially crafted files and by correcting the way GDI+ validates specially crafted image record types.
This security update is rated Critical for all supported editions of Windows, Microsoft Live Meeting 2007, Microsoft Lync 2010, and Microsoft Lync 2013. It is rated Important for all supported editions of Microsoft Office 2007 and Microsoft Office 2010.
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS14-036 Microsoft Live Meeting 2007 Console
MS14-036 Microsoft Lync 2010
MS14-036 Microsoft Lync 2010
MS14-036 Microsoft Lync 2010 Attendee
MS14-036 Microsoft Lync 2010 Attendee
MS14-036 Microsoft Lync 2013
MS14-036 Microsoft Lync 2013
MS14-036 Microsoft Lync 2013 Service Pack 1
MS14-036 Microsoft Lync 2013 Service Pack 1
MS14-036 Microsoft Lync Basic 2013
MS14-036 Microsoft Lync Basic 2013
MS14-036 Microsoft Lync Basic 2013 Service Pack 1
MS14-036 Microsoft Lync Basic 2013 Service Pack 1
MS14-036 Microsoft Office 2007 Service Pack 3
MS14-036 Microsoft Office 2007 Service Pack 3
MS14-036 Microsoft Office 2010 Service Pack 1
MS14-036 Microsoft Office 2010 Service Pack 1
MS14-036 Microsoft Office 2010 Service Pack 1
MS14-036 Microsoft Office 2010 Service Pack 1
MS14-036 Microsoft Office 2010 Service Pack 2
MS14-036 Microsoft Office 2010 Service Pack 2
MS14-036 Microsoft Office 2010 Service Pack 2
MS14-036 Microsoft Office 2010 Service Pack 2
MS14-036 Windows 7 for 32-bit Systems Service Pack 1
MS14-036 Windows 7 for 32-bit Systems Service Pack 1
MS14-036 Windows 7 for x64-based Systems Service Pack 1
MS14-036 Windows 7 for x64-based Systems Service Pack 1
MS14-036 Windows 8 for 32-bit Systems
MS14-036 Windows 8 for x64-based Systems
MS14-036 Windows 8.1 for 32-bit Systems
MS14-036 Windows 8.1 for 32-bit Systems
MS14-036 Windows 8.1 for x64-based Systems
MS14-036 Windows 8.1 for x64-based Systems
MS14-036 Windows Server 2003 Service Pack 2
MS14-036 Windows Server 2003 Service Pack 2
MS14-036 Windows Server 2003 with SP2 for Itanium-based Systems
MS14-036 Windows Server 2003 with SP2 for Itanium-based Systems
MS14-036 Windows Server 2003 x64 Edition Service Pack 2
MS14-036 Windows Server 2003 x64 Edition Service Pack 2
MS14-036 Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
MS14-036 Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
MS14-036 Windows Server 2008 R2 for x64-based Systems Service Pack 1
MS14-036 Windows Server 2008 R2 for x64-based Systems Service Pack 1
MS14-036 Windows Server 2008 R2 for x64-based Systems Service Pack 1
MS14-036 Windows Server 2008 R2 for x64-based Systems Service Pack 1
MS14-036 Windows Server 2008 for 32-bit Systems Service Pack 2
MS14-036 Windows Server 2008 for 32-bit Systems Service Pack 2
MS14-036 Windows Server 2008 for 32-bit Systems Service Pack 2
MS14-036 Windows Server 2008 for 32-bit Systems Service Pack 2
MS14-036 Windows Server 2008 for Itanium-based Systems Service Pack 2
MS14-036 Windows Server 2008 for Itanium-based Systems Service Pack 2
MS14-036 Windows Server 2008 for x64-based Systems Service Pack 2
MS14-036 Windows Server 2008 for x64-based Systems Service Pack 2
MS14-036 Windows Server 2008 for x64-based Systems Service Pack 2
MS14-036 Windows Server 2008 for x64-based Systems Service Pack 2
MS14-036 Windows Server 2012
MS14-036 Windows Server 2012
MS14-036 Windows Server 2012 R2
MS14-036 Windows Server 2012 R2
MS14-036 Windows Server 2012 R2
MS14-036 Windows Server 2012 R2
MS14-036 Windows Vista Service Pack 2
MS14-036 Windows Vista Service Pack 2
MS14-036 Windows Vista x64 Edition Service Pack 2
MS14-036 Windows Vista x64 Edition Service Pack 2
These new vulnerability checks are included in Qualys vulnerability signature 2.2.747-3. Each Qualys account is automatically updated with the latest vulnerability signatures as they become available. To view the vulnerability signature version in your account, from the Qualys Help menu, select the About tab.
To perform a selective vulnerability scan, configure a scan profile to use the following options:
In addition, prior to running a scan for these new vulnerabilities, you can estimate your exposure to these new threats by running the Risk Analysis Report, available from the Qualys Vulnerability Management Reports tab.
Platforms and Platform Identification
For more information, customers may contact Qualys Technical Support.
The Qualys Cloud Platform and its integrated suite of security and compliance applications provides organizations of all sizes with a global view of their security and compliance solutions, while drastically reducing their total cost of ownership. Qualys solutions include: continuous monitoring, vulnerability management, policy compliance, PCI compliance, security assessment questionnaire, web application scanning, web application firewall, malware detection and SECURE Seal for security testing of web sites.