Microsoft's November 2015 Patch Tuesday Fixes 12 Critical Vulnerabilities
Microsoft's November 2015 Patch Tuesday has arrived, addressing a total of 12 security bulletins. This update, the 12th of the year, tackles critical and important vulnerabilities across various Microsoft 365 products.
Among the releases, MS15-095 and MS15-099 are marked critical. MS15-095 targets four vulnerabilities in the Microsoft Edge browser, while MS15-099 addresses four Remote Code Execution flaws in Microsoft Office and Excel. Notably, one vulnerability in MS15-099 is currently under limited and targeted attack.
MS15-094 is another critical bulletin, focusing on 17 flaws in Internet Explorer, 14 of which are rated critical. Meanwhile, MS15-097, also critical, affects Windows GDI+ and is under active attack in the wild due to one of its vulnerabilities (CVE-2015-2546).
Important vulnerabilities are addressed in MS15-100, MS15-101, and MS102, impacting Windows Media Center, .NET, and Windows Task Manager respectively. Additionally, MS15-103 fixes three vulnerabilities in Exchange server and MS15-096 resolves a Denial of Service condition in Active Directory.
In total, over 145 bulletins are projected for the end of 2015, surpassing the initial projection of just over 140. Users are advised to apply these updates promptly to protect against potential security threats.
