It’s the month of September, more specifically, it’s the second Tuesday and this means that Windows and various other products are getting new updates. In September Patch Tuesday, Microsoft is releasing four new security bulletins, three of them rated as Important and the remaining is rated as Critical. Combined they address a total of 42 vulnerabilities found in Windows, Internet Explorer, .NET framework, and Lync Server.
The update for Internet Explorer resolves 37 issues, the most important vulnerability patched deals with a back door that could allowed attackers to obtain information about the target computer remotely. And the remaining 36 vulnerabilities deals with Internet Explorer flaws that could allowed Remote Code Execution (KB2977629).
The vulnerability in .NET framework solved an issue that could cause denial of services (KB2990931). The vulnerability in Windows Task Scheduler Could Allow Elevation of Privilege (KB2988948) has also been fixed that could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. And for Lync, Microsoft in September’s Patch Tuesday fixed vulnerability that could allow denial of service attacks (KB2990928).
The new updates are available immediately, they will install automatically, but you can always go to Windows Update to update manually.