CERT mailing list archives

Previous By Date Next
Previous By Thread Next

Microsoft Releases Critical Security Bulletin

From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Tue, 10 Feb 2015 13:26:41 -0600
NCCIC / US-CERT

National Cyber Awareness System:

Microsoft Releases Critical Security Bulletin [ 
https://www.us-cert.gov/ncas/current-activity/2015/02/10/Microsoft-Releases-Critical-Security-Bulletin ] 02/10/2015 
12:53 PM EST 
Original release date: February 10, 2015

Microsoft has released Security Bulletin MS15-011 [ https://technet.microsoft.com/library/security/MS15-011 ] to 
address a critical vulnerability in Windows. Exploitation of this vulnerability could allow a remote attacker to take 
complete control of an affected system. 

This security update contains a new policy feature (UNC Hardened Access) which is not enabled by default. To enable 
this feature, a system administrator must deploy the update, then apply the Group Policy settings described in the 
bulletin. For complete protection against this vulnerability, system reboots are required. Other than the update and 
configuration instructions contained in the Security Bulletin, there are no known workarounds or mitigations for this 
vulnerability. Updates are not available for Windows XP, Windows Server 2003, or Windows 2000.           

US-CERT strongly recommends administrators prioritize the application of the patch, and concurrently review and test 
the necessary configuration changes discussed in the associated Knowledge Base article (KB3000483).

________________________________________________________________________

This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy 
& Use [ http://www.us-cert.gov/privacy/ ] policy.

________________________________________________________________________

OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ 
http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ 
http://www.us-cert.gov/related-resources ] 

STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Previous By Date Next
Previous By Thread Next

Current thread: