[BigFix-Announcements-Japan] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Patches for Windows (Japanese)'
autonotify at us.ibm.com
autonotify at us.ibm.com
Thu Nov 20 02:34:17 PST 2014
Fixlet Site - 'Patches for Windows (Japanese)'
Current Version: 617 Published: Thu, 20 Nov 2014 06:57:37 GMT
New Fixlets:
============
***************************************************************
Title: MS14-066: Vulnerability in Schannel Could Allow Remote Code Execution - Windows Server 2008 R2 SP1 - KB3018238 (x64) (Japanese)
Severity: Critical
Fixlet ID: 1406631
Fixlet Link: http://technet.microsoft.com/library/security/MS14-066
Fixlet Description: This security update resolves a privately reported vulnerability in the Microsoft Secure Channel (Schannel) security package in Windows. The vulnerability could allow remote code execution if an attacker sends specially crafted packets to a Windows server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the Knowledge Base Article for more information.
***************************************************************
Title: MS14-066: Vulnerability in Schannel Could Allow Remote Code Execution - Windows Server 2012 Gold - KB3018238 (x64) (Japanese)
Severity: Critical
Fixlet ID: 1406633
Fixlet Link: http://technet.microsoft.com/library/security/MS14-066
Fixlet Description: This security update resolves a privately reported vulnerability in the Microsoft Secure Channel (Schannel) security package in Windows. The vulnerability could allow remote code execution if an attacker sends specially crafted packets to a Windows server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the Knowledge Base Article for more information.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows 8 Gold - KB3011780 (x64) (Japanese)
Severity: N/A
Fixlet ID: 1406801
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows 7 SP1 - KB3011780 (Japanese)
Severity: N/A
Fixlet ID: 1406803
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows 8.1 Gold - KB3011780 (x64) (Japanese)
Severity: N/A
Fixlet ID: 1406805
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows Server 2012 R2 Gold - KB3011780 (x64) (Japanese)
Severity: Critical
Fixlet ID: 1406807
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows Server 2008 SP2 - KB3011780 (x64) (Japanese)
Severity: Critical
Fixlet ID: 1406809
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows Server 2003 SP2 - KB3011780 (x64) (Japanese)
Severity: Critical
Fixlet ID: 1406811
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows 7 SP1 - KB3011780 (x64) (Japanese)
Severity: N/A
Fixlet ID: 1406813
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows Server 2008 R2 SP1 - KB3011780 (x64) (Japanese)
Severity: Critical
Fixlet ID: 1406815
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows Server 2008 SP2 - KB3011780 (Japanese)
Severity: Critical
Fixlet ID: 1406817
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows Vista SP2 - KB3011780 (Japanese)
Severity: N/A
Fixlet ID: 1406819
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows 8.1 Gold - KB3011780 (Japanese)
Severity: N/A
Fixlet ID: 1406821
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows Vista SP2 - KB3011780 (x64) (Japanese)
Severity: N/A
Fixlet ID: 1406823
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows Server 2003 SP2 - KB3011780 (Japanese)
Severity: Critical
Fixlet ID: 1406825
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows Server 2012 Gold - KB3011780 (x64) (Japanese)
Severity: Critical
Fixlet ID: 1406827
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS14-068: Vulnerability in Kerberos Could Allow Elevation of Privilege - Windows 8 Gold - KB3011780 (Japanese)
Severity: N/A
Fixlet ID: 1406829
Fixlet Link: http://technet.microsoft.com/library/security/MS14-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: 925474: Microsoft Exchange Server 2007 Enterprise Anti-spam Filter Updates v3.3.14227.472 - Exchange Server 2007 (x64) (Japanese)
Severity: N/A
Fixlet ID: 92547401
Fixlet Link: http://support.microsoft.com/kb/925474
Fixlet Description: Microsoft Exchange Server 2007 Enterprise Anti-spam Filter Updates keep the heuristics for the anti-spam content filter current.After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: 925474: Microsoft Exchange Server 2007 Enterprise Block List Updates v3.3.14225.043 - Exchange Server 2007 (x64) (Japanese)
Severity: N/A
Fixlet ID: 92547403
Fixlet Link: http://support.microsoft.com/kb/925474
Fixlet Description: Microsoft Exchange Server 2007 Enterprise Anti-spam Filter Updates keep the heuristics for the anti-spam content filter current.After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: 925474: Microsoft Exchange Server Standard Anti-spam Filter Updates v3.3.14227.472 - Exchange Server 2007 (x64) (Japanese)
Severity: N/A
Fixlet ID: 92547405
Fixlet Link: http://support.microsoft.com/kb/925474
Fixlet Description: Microsoft Exchange Server 2007 Enterprise Anti-spam Filter Updates keep the heuristics for the anti-spam content filter current.After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: 2958429: SQL Server 2012 Service Pack 2 Available (x64) (Japanese)
Severity: N/A
Fixlet ID: 295842901
Fixlet Link: http://msdn.microsoft.com/JA-JP/library/67cb8b3e-3d82-47f4-840d-0f12a3bff565
Fixlet Description: Microsoft has released SQL Server 2012 Service Pack 2. Microsoft SQL Server 2012 service packs are cumulative updates and upgrade all editions and service levels of SQL Server 2012 to SP2. This service pack contains up to and including SQL Server 2012 Service Pack1 Cumulative Update 9 (CU9).
Important Note: SQL Server instances operating in a non-Microsoft cluster environment should be upgraded using the CLUSTERPASSIVE option. Please use the second action below to upgrade in these environments.
***************************************************************
Title: 2958429: SQL Server 2012 Service Pack 2 Available (Japanese)
Severity: N/A
Fixlet ID: 295842903
Fixlet Link: http://msdn.microsoft.com/JA-JP/library/67cb8b3e-3d82-47f4-840d-0f12a3bff565
Fixlet Description: Microsoft has released SQL Server 2012 Service Pack 2. Microsoft SQL Server 2012 service packs are cumulative updates and upgrade all editions and service levels of SQL Server 2012 to SP2. This service pack contains up to and including SQL Server 2012 Service Pack1 Cumulative Update 9 (CU9).
Important Note: SQL Server instances operating in a non-Microsoft cluster environment should be upgraded using the CLUSTERPASSIVE option. Please use the second action below to upgrade in these environments.
More information about the BigFix-Announcements-Japan
mailing list