January 2014 Security Updates from Microsoft




On Tuesday, January 14, Microsoft is releasing four new security bulletins. None of the bulletins are critical. Microsoft systems affected are:

  • Office
  • Server Software
  • Windows
  • Dynamics AX

It is recommended to accept the updates. MIT WAUS subscribers will receive the updates after they have been tested for compatibility in the MIT environment. Installing the bulletins manually may require a restart.

Despite the light load, the patches do address a zero-day vulnerability in Windows XP and Windows Server 2003, made public in early November. Attackers were actively exploiting the flaw in the ND proxy driver that manages Microsoft’s Telephony API on XP via infected PDF attachments. Exploits only work with an Adobe Reader vulnerability that has since been patched. Microsoft will end support for Windows XP in April, 2014.


About MIT
IT Security Awareness Consultant and Communications Specialist at MIT

Comments are closed.

%d bloggers like this: