Source: Security Bulletin MS14-045 rereleased - MSRC - Site Home - TechNet BlogsEvery month for many years, we’ve released a number of updates focused on the continuous improvement of customers’ experiences with our technology. Historically, these updates happened at different times during the month, with the security-specific ones occurring on the second Tuesday of each month. Recently, to further streamline, we decided to include more of our non-security updates together with our security updates and begin the global release to customers on the second Tuesday of each month.
This month we had our first roll out with additional non-security updates. A small number of customers experienced problems with a few of the updates. As soon as we became aware of some problems, we began a review and then immediately pulled the problematic updates, making these unavailable to download. We then began working on a plan to rerelease the affected updates.
Today, we rereleased Security Bulletin MS14-045 to address kernel-mode driver issues, which you can learn more about through a review of the information contained here.
We encourage customers to install the security update as soon as possible. Customers with automatic updates enabled do not need to take any action. If you don’t have Windows Update enabled, we encourage you to do so now. If you’re not sure whether you’ve enabled Windows Update, you can check here. For organizations, your IT Group, the team or person administering the network, would be the best place to check.
Tracey Pretorius, Director
Microsoft Trustworthy Computing
This sounds more like a intranet security issue ?
Executive Summary
This security update resolves three privately reported vulnerabilitiesin Microsoft Windows. The most severe of these vulnerabilities could allow elevation of privilege if an attacker logs on to the system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit these vulnerabilities.
Thanks.
That reads as if they had problems with some non-security updates and have reissued one of them as a security update.
I'm confused!
In any event, in the light of this month's update problems I have resolved to delay installing all updates by a week rather than the usual 2 or 3 days. This is in accordance with the advice on the official forums from the MVPs.
It would be a wonder if people were still on auto updating after having issue with the last round :)
It certainly doesn't sound like something that is a threat to my two home computers (which are not linked other than by using a router for their internet connection) and which no-one else has access to apart from Mrs Seffrid when shopping online! I don't have access to my company's intranet at home, as agreed mutually between me and IT.
I'm not sure that's all true,
Running a administrator account could morph the threat just as easily ?
By way of clarification to my earlier post, I should have mentioned that I only use wired connections, I don't have any wireless appliances in use, at least not any that are set for wireless mode.
Thanks I don't believe it matters,
A corrupt program downloaded when using a administrator account has the same privilege as the user downloading it if the program is malicious,
So there's your login info and the same machine/ network.. wired or not
I'll probably flip a coin in a little while and decide on if to do the update or not today,
Possibly best two out of three..
Thanks Thrash.
What then is the significance of the attacker having to be able to log on locally? I never have understood that particular requirement.
I just ran a check for WU and their it was.
I just downloaded and installed it. Rebooted and so far all is well.
Quote