JPCERT-AT-2015-0032 JPCERT/CC 2015-09-09 <<< JPCERT/CC Alert 2015-09-09 >>> Microsoft Security Bulletin for September 2015 (including 5 critical patches) https://www.jpcert.or.jp/english/at/2015/at150032.html I. Overview Microsoft has released its security bulletin for September, 2015. This bulletin contains five (5) updates that are rated as "critical". Remote attackers leveraging these vulnerabilities may be able to execute arbitrary code. Details on the vulnerabilities can be found at the following URL: Microsoft Security Bulletin Summary for September 2015 https://technet.microsoft.com/en-us/library/security/ms15-sep [Security updates rated as "critical"] MS15-094 Cumulative Security Update for Internet Explorer (3089548) https://technet.microsoft.com/en-us/library/security/ms15-094 MS15-095 VCumulative Security Update for Microsoft Edge (3089665) https://technet.microsoft.com/en-us/library/security/ms15-095 MS15-097 Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execution (3089656) https://technet.microsoft.com/en-us/library/security/ms15-097 MS15-098 Vulnerabilities in Windows Journal Could Allow Remote Code Execution (3089669) https://technet.microsoft.com/en-us/library/security/ms15-098 MS15-099 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3089664) https://technet.microsoft.com/en-us/library/security/ms15-099 According to Microsoft, attacks leveraging MS15-097 and MS15-099 have been observed in the wild. Please apply the security update programs as soon as possible. II. Solution Please apply the security update programs through Microsoft Update, Windows Update, etc. as soon as possible. Microsoft Update http://www.update.microsoft.com/ Windows Update http://windowsupdate.microsoft.com/ III. References Microsoft Microsoft Security Bulletin Summary for September 2015 https://technet.microsoft.com/en-us/library/security/ms15-sep Microsoft Microsoft Security Information for August 2015 (Monthly) MS15-094 - MS15-105 (Japanese) http://blogs.technet.com/b/jpsecurity/archive/2015/09/09/201509-security-bulletin.aspx If you have any information regarding this alert, please contact JPCERT/CC. ====================================================================== JPCERT Coordination Center (JPCERT/CC) MAIL: info@jpcert.or.jp TEL: +81-3-3518-4600 FAX: +81-3-3518-4602 https://www.jpcert.or.jp/english/