Patch Tuesday October 2014 : Microsoft fixes critical flaws in IE

Microsoft gave the first details of its monthly patch burst scheduled for next week on the occasion of the traditional Patch Tuesday. Thus, of the nine security bulletins issued by Microsoft, 3 are classified as critical, while five others are classified as major, the last moderate risk. These updates, 5 correct vulnerabilities to run code remotely and 3 others may allow malicious users to access administrative privileges higher.

The first security bulletin issued by Microsoft regarding the update of Internet Explorer security and applies to all versions of the browser, IE6 on Windows Server 2003 with IE 11 on Windows 8.1. The fix is ​​critical levels for installations on client computers (fixed and mobile) but moderate level server side. Microsoft  has, however, not (yet) given the number of vulnerabilities addressed by this patch, but we know that over the last 4 months, the publisher has fixed 147 bugs in the browser. Chris Goettl, product manager at Shavlik said  "There is a high probability for the patch resolves a number of vulnerabilities in double digits for IE this month".

The other two critical updates affect all editions of Windows, including Windows 8.1 and Windows 7 Updates classified as major security concern for their Office 2007 and Office 2010 on Windows (but not Office 2013) and Office for Mac 2011 and SharePoint Server 2010 and various versions (clients and servers) APS-.NEt MVC, an open source framework to build web apps.