July 2014 Microsoft Patch Tuesday Summary

By Elevate posted 07-08-2014 18:57


It’s Microsoft Patch Tuesday! In the July edition there 6 updates; two are marked "Critical", three are rated "Important" and one is rated "Moderate”. A total of 29 vulnerabilities were fixed over 6 bulletins this month. One of the Critical update MS14-037 is an all version Internet Explorer (IE 6 to 11) patch. This single update resolves 23 CVE's (Common Vulnerability and Exposure) including one publicly disclosed vulnerability.


Here is a list of Security bulletins which were rolled out in today's Patch Tuesday release. 


Bul Sev KB Article Bulletin No. Bulletin Title
Critical 2975687 MS14-037 Cumulative Security Update for Internet Explorer
Critical 2975689 MS14-038 Vulnerability in Windows Journal Could Allow Remote Code Execution
Important 2975685 MS14-039 Vulnerability in On-Screen Keyboard Could Allow Elevation of Privilege
Important 2975684 MS14-040 Vulnerability in Ancillary Function Driver (AFD) Could Allow Elevation of Privilege
Important 2975681 MS14-041 Vulnerability in DirectShow Could Allow Elevation of Privilege
Moderate 2972621 MS14-042 Vulnerability in Service Bus Could Allow Denial of Service



  Tracking Microsoft Vulnerability Patches 2014 

  Screenshot from 2014-07-08 23:14:42.png


As shown in the chart above, number of vulnerabilities which were patched this month is significantly low in comparison to last month where almost double the number of vulnerabilities was fixed. One common thing between last month and this month is that IE continues to be the most vulnerable among other Microsoft products.


This Patch Tuesday turns out to be an IE dominated release. As we do every month, we’ve released a signature update #2396 to address vulnerabilities fixed in this month's patches. Happy patching!


For additional information on how you can protect your network from emerging threats, please visit