Patch Management Service Content Update from CTCOMP – October 2014

Eight security bulletins were released this month, three rated Critical and five rated Important which address 24 Common Vulnerabilities and Exposures (CVEs) in Microsoft Windows, Office, Internet Explorer, .NET Framework, and ASP.NET. While Microsoft encourages everyone to apply all of the available updates, for those customers who need to prioritize their patch deployments, it is recommended to put the three Critically-rated updates at the top of the list.

Also of note this month, Microsoft will be expanding the out-of-date ActiveX control blocking feature beginning November 11, 2014 to block outdated versions of Silverlight in addition to outdated versions of Java.

 

October 2014 Security Bulletins overview

(source: Microsoft Security Response Center)


October 20, 2014

Update Report on Patches MS14-056 to MS14-063

MS14-056: Deployed via Kaseya and tested successfully on IE 8, 9, 10, 11.

MS14-057: Deployed via Kaseya and tested successfully on Windows 2008, 7, 2008R2, 8.1, 2012R2.

MS14-058: Deployed via Kaseya and tested successfully on Windows 2008, 7, 2008R2, 8.1, 2012R2.

MS14-059: ***NOT TESTED*** The CTComp lab and production environments do not currently contain any systems running the ASP.NET Model View Controller.

MS14-060: Deployed via Kaseya and tested successfully on Windows 2008, 7, 2008R2, 8.1, 2012R2.

MS14-061: Deployed via Kaseya and tested successfully on Office 2010.

MS14-062: ***NOT TESTED*** CTComp has discontinued patch testing for Microsoft Windows operating systems versions 2003 and older.

MS14-063: Deployed via Kaseya and tested successfully on Windows 2008.