Microsoft Monthly Security Update (Sep 2017)

Last Update Date: 13 Sep 2017 09:32 Release Date: 13 Sep 2017 4345 Views

RISK: High Risk

TYPE: Operating Systems - Windows OS

Microsoft has released monthly security update for their products:

Vulnerable Product	Severity	Impacts	Notes	Details (including CVE)
Developer Tools	Highly Critical	Remote Code Execution	Exploited	KB4040960 KB4040977 KB4038783 KB4040972 KB4040981 KB4038782 KB4040966 KB4040973 KB4038781 KB4040957 KB4038788 KB4040964 KB4040973 KB4040972 KB4040958 KB4040980 KB4040974 KB4040959 KB4040960 KB4041086 KB4040956 KB4040955 KB4040965 KB4040979 KB4040971 KB4040957 KB4040978 KB4040967 KB4040975
Microsoft Office	Highly Critical	Remote Code Execution Elevation of Privilege Information Disclosure	Publicly Disclosed;Exploited	KB3213568 KB4038783 KB3213626 KB4025865 KB3213646 KB4011063 KB4038781 KB4038788 KB4011113 KB3213564 KB4011089 KB4025867 KB4011062 KB4011089 KB4011108 KB4011126 KB3203474 KB3213551 KB3114428 KB3213638 KB4011061 KB4011117 KB4011055 KB4011040 KB4011134 KB4011125 KB4011086 KB3213564 KB4038782 KB3213644 KB4011064 KB4038777 KB4025868 KB3212225 KB4011103 KB4039384 KB4011103 KB4011108 KB4011055 KB3213641 KB4011090 KB4011103 KB3141537 KB3128030 KB3213632 KB3213658 KB4025869 KB4011041 KB4038779 KBRelease Notes KB4011107 KB3128027 KB3213649 KB4011108 KB4011091 KB4011069 KB4038799 KB4025865 KB4011038 KB3213631 KB4011127 KB3213560 KB3213562 KB4011069 KB4011069 KB4038793 KB4011038 KB4011050 KB3141537 KB4038792 KB3213568 KB3213642 KB3191831 KB4011065 KB3191831 KB3213626 KB3213638 KB4038792 KB4011108 KB3128027 KB4011056 KB4011041 KB4011061 KB3213564 KB4011090 KB4011040 KB4011090 KB3213631 KB3213551 KB3203474 KB4025866 KB4038786 KB4011050 KB4011091 KB4011126 KB4011107
Browser	Moderately Critical	Security Restriction Bypass Remote Code Execution Spoofing Information Disclosure	Publicly Disclosed	KB4038777 KB4038792 KB4038786 KB4038782 KB4038793 KB4038781 KB4038788 KB4038792 KB4036586 KB4038799 KB4038783
Exchange Server	Moderately Critical	Elevation of Privilege Information Disclosure		KB4036108
Windows	Moderately Critical	Security Restriction Bypass Elevation of Privilege Denial of Service Remote Code Execution Information Disclosure Spoofing	Publicly Disclosed	KB3213568 KB4038874 KB4038783 KB4038799 KB4025865 KB4025865 KB4038782 KB4038781 KB4038788 KB3213631 KB4039266 KB4025867 KB4039038 KB4038793 KB3213638 KB4011040 KB4038792 KB4011125 KB3213568 KB4011134 KB4039384 KB4034786 KB3213638 KB4038792 KB4038777 KB3212225 KB3213631 KB3213641 KB4032201 KB4025868 KB4011040 KB3213632 KB4025869 KB4038779 KBRelease Notes KB4011107 KB4025866 KB4038786 KB3213649 KB4039325 KB4011107

Number of 'Extremely Critical' product(s): 0

Number of 'Highly Critical' product(s): 2

Number of 'Moderately Critical' product(s): 3

Number of 'Less Critical Critical' product(s): 0

Evaluation of overall 'Criticality Level': Highly Critical

Impact

Denial of Service
Elevation of Privilege
Remote Code Execution
Security Restriction Bypass
Information Disclosure
Spoofing

System / Technologies affected

Internet Explorer
Microsoft Edge
Microsoft Windows
Microsoft Office and Microsoft Office Services and Web Apps
Skype for Business and Lync
.NET Framework
Microsoft Exchange Server

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

The vendor has issued security updates for the products. Please refer to 'Details' column in the above table for details of individual product update or run software update.

Vulnerability Identifier

http://www.cvedetails.com/vulnerability-list.php?vendor_id=26&year=2017&month=9

Source

Microsoft