Marc Lognoul's IT Infrastructure Blog

Cloudy with a Chance of On-Prem


Leave a comment

SharePoint: MS15-022 (Critical) Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3038999)

Once again, SharePoint Server 2007, 2010 and 2013 are affected by a vulnerability categorized as Critical by MS that can allow remote code execution. The matching Office suite version are affected as well.

More information:

Important: SharePoint Server 2013 updated with March PU or Service Pack 1 can receive this security update through Windows Update.

Advertisements


Leave a comment

SharePoint 2013: December 2014 Cumulative Update released

The December 2014 CU for SharePoint 2013 (aka build number 15.0.4675.1000) has just been released.

Download Links:

KB Articles:


Leave a comment

SharePoint: MS14-081 Vulnerabilities in Microsoft Word and Microsoft Office Web Apps Could Allow Remote Code Execution (3017301)

Both SharePoint 2010 and 2013 versions are affected by a vulnerability categorized as Critical by MS that can allow remote code execution.

More information:


Leave a comment

SharePoint 2010-2013: August 2014 CU’s Released with a Gotchas!

While the monthly CU for both SharePoint 2010 and 2013 have been released, make sure you carefully read Stefan Goßner’s [MSFT] posts regarding the “non-cumulative” nature of those so-called “cumulative” updates, particularly for SharePoint 2013: