As an adjunct to our monthly Patch Tuesday updates, Microsoft released an out-of-band patch on July 20th. They only release out-of-band patches for the most critical security bugs, so this one is very important.


Application Control with Memory Protection against remote code execution helps in protecting against this attack.

 

Bulletin Number

KB Number

Title

Bulletin Rating

Vulnerability Impact

McAfee Labs Security Advisory Number

Intel Security Coverage

MS15-078

3079904

Vulnerability in Microsoft Font Driver Could Allow Remote Code Execution

Critical

Remote Code Execution

MTIS15-112

Covered Products:

  • Vulnerability Mgr (July 21)
  • Application Control

 

Under Analysis:

  • DAT
  • BOP
  • Host IPS
  • NSP
  • Web Gateway
  • Firewall Enterprise

 

Stay safe!

-Greg