Posts

Microsoft Security Bulletin Coverage (Oct 11, 2016)

Dell SonicWALL has analyzed and addressed Microsoft’s security advisories for the month of Oct 11, 2016. A list of issues reported, along with Dell SonicWALL coverage information are as follows:

MS16-118 Cumulative Security Update for Internet Explorer

  • CVE-2016-3383 Internet Explorer Memory Corruption Vulnerability
    IPS:11898 ” Internet Explorer Memory Corruption Vulnerability (MS16-118) “
  • CVE-2016-3385 Internet Explorer Memory Corruption Vulnerability
    IPS:11900 “Internet Explorer Memory Corruption Vulnerability (MS16-118) 3”
  • CVE-2016-3267 Microsoft Browser Information Disclosure Vulnerability
    IPS:11901 ” Microsoft Browser Information Disclosure Vulnerability (MS16-118)”
  • CVE-2016-3298 Microsoft Browser Information Disclosure Vulnerability
    IPS:11902 ” Microsoft Browser Information Disclosure Vulnerability (MS16-118) 2″
  • CVE-2016-3331 Microsoft Browser Memory Corruption Vulnerability
    IPS:11903 ” Microsoft Browser Information Disclosure Vulnerability (MS16-118) 3″
  • CVE-2016-3382 Microsoft Browser Memory Corruption Vulnerability
    IPS:11904 ” Microsoft Browser Information Disclosure Vulnerability (MS16-118) 4 “
  • CVE-2016-3387 Microsoft Browser Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3388 Microsoft Browser Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3384 Internet Explorer Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3390 Scripting Engine Memory Corruption Vulnerability
    This is a local vulnerability.
  • CVE-2016-3391 Microsoft Browser Information Disclosure Vulnerability
    There are no known exploits in the wild.

MS16-119 Cumulative Security Update for Microsoft Edge

  • CVE-2016-3267 Microsoft Browser Information Disclosure Vulnerability
    IPS:11901 ” Microsoft Browser Information Disclosure Vulnerability (MS16-118)”
  • CVE-2016-3331 Microsoft Browser Memory Corruption Vulnerability
    IPS:11903 ” Microsoft Browser Information Disclosure Vulnerability (MS16-118) 3″
  • CVE-2016-3382 Microsoft Browser Memory Corruption Vulnerability
    IPS:11904 ” Microsoft Browser Information Disclosure Vulnerability (MS16-118) 4 “
  • CVE-2016-3386 Scripting Engine Memory Corruption Vulnerability
    IPS:11905 ” Scripting Engine Memory Corruption Vulnerability (MS16-119)”
  • CVE-2016-7189 Scripting Engine Information Disclosure Vulnerability
    IPS:11902 ” Microsoft Browser Information Disclosure Vulnerability (MS16-118) 2″
  • CVE-2016-7190 Scripting Engine Memory Corruption Vulnerability
    IPS:11907 ” Scripting Engine Information Disclosure Vulnerability(MS16-119) 3″
  • CVE-2016-7194 Scripting Engine Memory Corruption Vulnerability
    IPS:11908 ” Scripting Engine Information Disclosure Vulnerability(MS16-119) 4″
  • CVE-2016-3387 Microsoft Browser Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3388 Microsoft Browser Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3389 Scripting Engine Memory Corruption Vulnerability
    This is a local vulnerability.
  • CVE-2016-3390 Scripting Engine Memory Corruption Vulnerability
    This is a local vulnerability.
  • CVE-2016-3391 Microsoft Browser Information Disclosure Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3392 Microsoft Browser Security Feature Bypass
    There are no known exploits in the wild.

MS16-120 Security Update for Microsoft Graphics Component

  • CVE-2016-3209 True Type Font Parsing Information Disclosure Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3262 GDI+ Information Disclosure Vulnerability
    SPY:1380 ” Malformed-File emf.MP.9″
  • CVE-2016-3263 GDI+ Information
    Disclosure Vulnerability
    SPY:1380 ” Malformed-File emf.MP.9″
  • CVE-2016-3270 Win32k Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3393 Windows Graphics Component RCE Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-7182 True Type Font Parsing Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3396 GDI+ Remote Code Execution Vulnerability
    There are no known exploits in the wild.

MS16-121 Security Update for Microsoft Office

  • CVE-2016-7193 Microsoft Office Memory Corruption Vulnerability
    IPS:11909 ” Microsoft Office Memory Corruption Vulnerability(MS16-121) 1″

MS16-122 Security Update for Microsoft Video Control

  • CVE-2016-0142 Windows Object Linking and Embedding (OLE) Remote Code Execution Vulnerability
    This is a local vulnerability.

MS16-123 Security Update for Kernel-Mode Drivers

  • CVE-2016-7211 Win32k Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2016-3266 Win32k Elevation of Privilege Vulnerability
    This is a local vulnerability.
  • CVE-2016-3341 Windows Transaction Manager Elevation of Privilege Vulnerability
    This is a local vulnerability.
  • CVE-2016-3376 Windows Kernel Elevation of Privilege Vulnerability
    This is a local vulnerability.
  • CVE-2016-7185 Windows Kernel Driver Local Elevation of Privilege
    This is a local vulnerability.

MS16-124 Security Update for Windows Registry

  • CVE-2016-0070 Windows Kernel Local Elevation of Privilege
    This is a local vulnerability.
  • CVE-2016-0073 Windows Kernel Local Elevation of Privilege
    This is a local vulnerability.
  • CVE-2016-0075 Windows Kernel Local Elevation of Privilege
    This is a local vulnerability.
  • CVE-2016-0079 Windows Kernel Local Elevation of Privilege
    This is a local vulnerability.

MS16-125 Security Update for Diagnostics Hub

  • CVE-2016-7188 Windows Diagnostics Hub Elevation of Privilege
    SPY:1381 ” Malformed-File exe.MP.28″

MS16-126 Security Update for Microsoft Internet Messaging API

  • CVE-2016-3298 Microsoft Browser Information Disclosure Vulnerability
    IPS:11902 ” Microsoft Browser Information Disclosure Vulnerability (MS16-118) 2″