Microsoft Security Bulletin Coverage (July 8, 2014)
Dell SonicWALL has analyzed and addressed Microsoft’s security advisories for the month of July, 2014. A list of issues reported, along with Dell SonicWALL coverage information are as follows:
MS14-037 Cumulative Security Update for Internet Explorer (2975687)
- CVE-2014-1763 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-1765 Internet Explorer Memory Corruption Vulnerability
IPS: 4393 “Internet Explorer Memory Corruption Vulnerability (MS14-037) 4” - CVE-2014-2783 Extended Validation (EV) Certificate Security Feature Bypass Vulnerability
There are no known exploits in the wild. - CVE-2014-2785 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2786 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2787 Internet Explorer Memory Corruption Vulnerability
IPS: 4400 “Internet Explorer Memory Corruption Vulnerability (MS14-037) 5” - CVE-2014-2788 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2789 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2790 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2791 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2792 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2794 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2795 Internet Explorer Memory Corruption Vulnerability
IPS: 4402 “Internet Explorer Memory Corruption Vulnerability (MS14-037) 6” - CVE-2014-2797 Internet Explorer Memory Corruption Vulnerability
IPS: 4392 “Internet Explorer Memory Corruption Vulnerability (MS14-037) 3” - CVE-2014-2798 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2800 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2801 Internet Explorer Memory Corruption Vulnerability
IPS: 4390 “Internet Explorer Memory Corruption Vulnerability (MS14-037) 2” - CVE-2014-2802 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2803 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2804 Internet Explorer Memory Corruption Vulnerability
IPS: 4388 “Internet Explorer Memory Corruption Vulnerability (MS14-037) 1” - CVE-2014-2806 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2807 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2809 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild. - CVE-2014-2813 Internet Explorer Memory Corruption Vulnerability
There are no known exploits in the wild.
MS14-038 Vulnerability in Windows Journal Could Allow Remote Code Execution (2975689)
- CVE-2014-1824 Windows Journal Remote Code Execution Vulnerability
There are no known exploits in the wild.
MS14-039 Vulnerability in On-Screen Keyboard Could Allow Elevation of Privilege (2975685)
- CVE-2014-2781 On-Screen Keyboard Elevation of Privilege Vulnerability
There are no known exploits in the wild.
MS14-040 Vulnerability in Ancillary Function Driver (AFD) Could Allow Elevation of Privilege (2975684)
- CVE-2014-1767 Ancillary Function Driver Elevation of Privilege Vulnerability
There are no known exploits in the wild.
MS14-041 Vulnerability in DirectShow Could Allow Elevation of Privilege (2975681)
- CVE-2014-2780 DirectShow Elevation of Privilege Vulnerability
There are no known exploits in the wild.
MS14-042 Vulnerability in Microsoft Service Bus Could Allow Denial of Service (2972621)
- CVE-2014-2814 Service Bus Denial of Service Vulnerability
There are no known exploits in the wild.
The SonicWall Capture Labs Threat Research Team gathers, analyzes and vets cross-vector threat information from the SonicWall Capture Threat network, consisting of global devices and resources, including more than 1 million security sensors in nearly 200 countries and territories. The research team identifies, analyzes, and mitigates critical vulnerabilities and malware daily through in-depth research, which drives protection for all SonicWall customers. In addition to safeguarding networks globally, the research team supports the larger threat intelligence community by releasing weekly deep technical analyses of the most critical threats to small businesses, providing critical knowledge that defenders need to protect their networks.
