Acknowledgments - 2014
Microsoft extends thanks to the following for working with us to help protect customers.
Bulletin ID | Vulnerability Title | CVE ID | Acknowledgment |
---|---|---|---|
December 2014 | |||
MS14-085 | Graphics Component Information Disclosure Vulnerability | CVE-2014-6355 | Michal Zalewski of Google Inc. |
MS14-084 | VBScript Memory Corruption Vulnerability | CVE-2014-6363 | SkyLined, working with VeriSign iDefense Labs |
MS14-083 | Global Free Remote Code Execution in Excel Vulnerability | CVE-2014-6360 | Ben Hawkes of Google Project Zero |
MS14-083 | Excel Invalid Pointer Remote Code Execution Vulnerability | CVE-2014-6361 | Ben Hawkes of Google Project Zero |
MS14-082 | Microsoft Office Component Use After Free Vulnerability | CVE-2014-6364 | Ben Hawkes of Google Project Zero |
MS14-081 | Index Remote Code Execution Vulnerability | CVE-2014-6356 | Ben Hawkes of Google Project Zero |
MS14-081 | Use After Free Word Remote Code Execution Vulnerability | CVE-2014-6357 | Ben Hawkes of Google Project Zero |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6327 | Garage4Hackers, working with HP's Zero Day Initiative |
MS14-080 | Internet Explorer XSS Filter Bypass Vulnerability | CVE-2014-6328 | Takeshi Terada of Mitsui Bussan Secure Directions, Inc |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6329 | Garage4Hackers, working with HP's Zero Day Initiative |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6330 | A Qihoo researcher |
MS14-080 | VBScript Memory Corruption Vulnerability | CVE-2014-6363 | SkyLined, working with VeriSign iDefense Labs |
MS14-080 | Internet Explorer XSS Filter Bypass Vulnerability | CVE-2014-6365 | Dieyu: right-write-Correct wrong-run-hitting-NotCorrect |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6366 | Liu Long of Qihoo 360 |
MS14-080 | Internet Explorer ASLR Bypass Vulnerability | CVE-2014-6368 | Jack Tang of Trend Micro |
MS14-080 | Internet Explorer ASLR Bypass Vulnerability | CVE-2014-6368 | SkyLined |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6369 | Yuki Chen of Qihoo 360 |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6369 | 0016EECD9D7159A949DAD3BC17E0A939, working with HP's Zero Day Initiative |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6373 | Donghai Zhu |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6374 | SkyLined, working with HP's Zero Day Initiative |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6374 | 3S Labs, working with HP's Zero Day Initiative |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6375 | Sky, working with HP's Zero Day Initiative |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6375 | Jihui Lu of KeenTeam (@K33nTeam) |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6376 | Garage4Hackers, working with HP's Zero Day Initiative |
MS14-080 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-8966 | Sky, working with HP's Zero Day Initiative |
MS14-075 | Outlook Web Access Token Spoofing Vulnerability | CVE-2014-6319 | Nikolay Anisenya |
MS14-075 | OWA XSS Vulnerability | CVE-2014-6325 | John Koerner |
MS14-075 | OWA XSS Vulnerability | CVE-2014-6326 | Adi Ivascu |
MS14-075 | Exchange URL Redirection Vulnerability | CVE-2014-6336 | Jason Tsang Mui Chung |
November 2014 | |||
MS14-079 | Denial of Service in Windows Kernel Mode Driver Vulnerability | CVE-2014-6317 | Hossein Lotfi of Secunia Research |
MS14-078 | Microsoft IME (Japanese) Elevation of Privilege Vulnerability | CVE-2014-4077 | Vitaly Kamluk and Costin Raiu of Kaspersky Lab |
MS14-073 | SharePoint Elevation of Privilege Vulnerability | CVE-2014-4116 | Drew Calcott of EY |
MS14-072 | TypeFilterLevel Vulnerability | CVE-2014-4149 | James Forshaw of Context Information Security |
MS14-071 | Windows Audio Service Vulnerability | CVE-2014-6322 | James Forshaw of Google Project Zero |
MS14-070 | TCP/IP Elevation of Privilege Vulnerability | CVE-2014-4076 | Matt Bergin of KoreLogic Security |
MS14-069 | Microsoft Office Double Delete Remote Code Execution Vulnerability | CVE-2014-6333 | Ben Hawkes of Google Project Zero |
MS14-069 | Microsoft Office Bad Index Remote Code Execution Vulnerability | CVE-2014-6334 | Ben Hawkes of Google Project Zero |
MS14-069 | Microsoft Office Invalid Pointer Remote Code Execution Vulnerability | CVE-2014-6335 | Ben Hawkes of Google Project Zero |
MS14-068 | Kerberos Checksum Vulnerability | CVE-2014-6324 | The Qualcomm Information Security & Risk Management team, with special recognition for Tom Maddock |
MS14-067 | MSXML Remote Code Execution Vulnerability | CVE-2014-4118 | Alisa Esage Shevchenko of Esage Lab |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4143 | s3tm3m, working with HP's Zero Day Initiative |
MS14-065 | Internet Explorer Clipboard Information Disclosure Vulnerability | CVE-2014-6323 | Daniel Trebbien |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6337 | Bo Qu of Palo Alto Networks |
MS14-065 | Internet Explorer ASLR Bypass Vulnerability | CVE-2014-6339 | Bo Qu of Palo Alto Networks |
MS14-065 | Internet Explorer ASLR Bypass Vulnerability | CVE-2014-6339 | Jihui Lu of KeenTeam (@K33nTeam) |
MS14-065 | Internet Explorer Cross-domain Information Disclosure Vulnerability | CVE-2014-6340 | James Forshaw of Context Information Security |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6341 | s3tm3m, working with HP's Zero Day Initiative |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6342 | SkyLined, working with HP's Zero Day Initiative |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6343 | 0016EECD9D7159A949DAD3BC17E0A939, working with HP's Zero Day Initiative |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6344 | Jason Kratzer, working with HP's Zero Day Initiative |
MS14-065 | Internet Explorer Cross-domain Information Disclosure Vulnerability | CVE-2014-6345 | Takeshi Terada of Mitsui Bussan Secure Directions, Inc |
MS14-065 | Internet Explorer Cross-domain Information Disclosure Vulnerability | CVE-2014-6346 | Takeshi Terada of Mitsui Bussan Secure Directions, Inc |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6347 | Cloudfuzzer, working with HP's Zero Day Initiative |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6348 | A3F2160DCA1BDE70DA1D99ED267D5DC1EC336192, working with HP's Zero Day Initiative |
MS14-065 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-6349 | James Forshaw, working with Google Project Zero |
MS14-065 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-6350 | James Forshaw, working with Google Project Zero |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6351 | Bo Qu of Palo Alto Networks |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6351 | ca0nguyen, working with HP's Zero Day Initiative |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6351 | Hui Gao of Palo Alto Networks |
MS14-065 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6353 | Pengfei Guo of Qihoo 360 |
MS14-064 | Windows OLE Automation Array Remote Code Execution Vulnerability | CVE-2014-6332 | Robert Freeman of IBM X-Force |
MS14-064 | Windows OLE Remote Code Execution Vulnerability | CVE-2014-6352 | Drew Hintz, Shane Huntley, and Matty Pellegrino of the Google Security Team |
MS14-064 | Windows OLE Remote Code Execution Vulnerability | CVE-2014-6352 | Haifei Li and Bing Sun of the McAfee Security Team |
MS14-064 | Windows OLE Remote Code Execution Vulnerability | CVE-2014-6352 | Yu Wang, Bin Wang, and Donghui Zhang of the Baidu Security Team (X-Team) |
October 2014 | |||
MS14-063 | Windows Disk Partition Driver Elevation of Privilege Vulnerability | CVE-2014-4115 | Marcin 'Icewall' Noga of Cisco Talos |
MS14-061 | Microsoft Word File Format Vulnerability | CVE-2014-4117 | 3S Labs, working with HP'sZero Day Initiative |
MS14-060 | Windows OLE Remote Code Execution Vulnerability | CVE-2014-4114 | iSIGHT Partners and researchers from ESET |
MS14-058 | Win32k.sys Elevation of Privilege Vulnerability | CVE-2014-4113 | CrowdStrike Intelligence Team |
MS14-058 | Win32k.sys Elevation of Privilege Vulnerability | CVE-2014-4113 | FireEye, Inc. |
MS14-058 | TrueType Font Parsing Elevation of Privilege Vulnerability | CVE-2014 -4148 | FireEye, Inc. |
MS14-057 | .NET ClickOnce Elevation of Privilege Vulnerability | CVE-2014-4073 | James Forshaw of Context Information Security |
MS14-056 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-4123 | James Forshaw of Context Information Security |
MS14-056 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-4124 | James Forshaw of Context Information Security |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4126 | Rohit Mothe, working with VeriSign iDefense Labs |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4126 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4127 | Bo Qu of Palo Alto Networks |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4128 | Omair, working with VeriSign iDefense Labs |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4128 | Jason Kratzer |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4129 | Adlab of Venustech |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4129 | Yuki Chen of Qihoo 360 |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4130 | Sky, working with HP's Zero Day Initiative |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4130 | Jihui Lu of KeenTeam (@K33nTeam) |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4132 | Zhibin Hu of Qihoo 360 |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4132 | José A. Vázquez of Yenteasy - Security Research, working with VeriSign iDefense Labs |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4133 | Zhibin Hu of Qihoo 360 |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4134 | Zhibin Hu of Qihoo 360 |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4134 | Liu Long of Qihoo 360 |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4134 | Yujie Wen of Qihoo 360 |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4137 | Liu Long of Qihoo 360 |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4137 | Bo Qu of Palo Alto Networks |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4138 | SkyLined, working with HP's Zero Day Initiative |
MS14-056 | Internet Explorer ASLR Bypass Vulnerability | CVE-2014-4140 | John Villamil (@day6reak) |
MS14-056 | Internet Explorer ASLR Bypass Vulnerability | CVE-2014-4140 | Jack Tang of Trend Micro |
MS14-056 | Internet Explorer ASLR Bypass Vulnerability | CVE-2014-4140 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-056 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4141 | Peter 'corelanc0d3r' Van Eeckhoutte of Corelan, working with HP's Zero Day Initiative |
September 2014 | |||
MS14-055 | Lync Denial of Service Vulnerability | CVE-2014-4068 | Peter Schraffl of Telecommunication Software GmbH |
MS14-055 | Lync XSS Information Disclosure Vulnerability | CVE-2014-4070 | Noam Rathaus, working with Beyond Security's SecuriTeam Secure Disclosure team |
MS14-055 | Lync Denial of Service Vulnerability | CVE-2014-4071 | KDDI Corp. Lync Team |
MS14-054 | Task Scheduler Vulnerability | CVE-2014-4074 | James Forshaw of Context Information Security |
MS14-053 | .NET Framework Denial of Service Vulnerability | CVE-2014-4072 | Alexander Klink of n.runs AG |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2799 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2799 | Adlab of Venustech |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4059 | Adlab of Venustech |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4065 | AbdulAziz Hariri of HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4079 | 56e7aec02099b976120abfda31254b05, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4080 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4081 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4081 | Adlab of Venustech |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4082 | Yuki Chen of Qihoo 360 |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4082 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4083 | Adlab of Venustech |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4084 | Adlab of Venustech |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4084 | KnownSec Team |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4084 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4085 | Sky, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4086 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4086 | Liu Long ofQihoo 360 |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4086 | Skylined |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4086 | Heige |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4087 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4087 | Zhibin Hu Qihoo 360 |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4088 | Hui Gao of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4089 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4090 | Garage4Hackers, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4091 | Yuki Chen of Qihoo 360 |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4092 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4092 | A3F2160DCA1BDE70DA1D99ED267D5DC1EC336192, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4092 | Jason Kratzer, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4092 | 0016EECD9D7159A949DAD3BC17E0A939, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4092 | Yuki Chen of Qihoo 360 |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4093 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4094 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4095 | Yuki Chen of Trend Micro, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4096 | cloudfuzzer, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4096 | AbdulAziz Hariri of HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4096 | Yuki Chen of Trend Micro, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4097 | Yuki Chen of Trend Micro, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4097 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4098 | An anonymous researcher, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4099 | SkyLined, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4100 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4101 | Xin Ouyang of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4102 | Liu Long ofQihoo 360 |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4103 | AbdulAziz Hariri of HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4104 | Liu Long ofQihoo 360 |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4105 | Yuki Chen of Trend Micro, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4106 | Bo Qu of Palo Alto Networks |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4107 | AbdulAziz Hariri of HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4108 | An anonymous researcher, working with HP's Zero Day Initiative |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4109 | John Villamil (@day6reak) |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4110 | KnownSec Team |
MS14-052 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4111 | Yujie Wen of Qihoo 360 |
MS14-052 | Defense-in-depth change in this bulletin | Masato Kinugawa and the Google Security Team | |
August 2014 | |||
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2774 | AbdulAziz Hariri of HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2784 | Yujie Wen of Qihoo 360 |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2796 | Bo Qu of Palo Alto Networks |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2808 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2810 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2811 | IronRock working with VeriSign iDefense Labs |
MS14-051 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-2817 | James Forshaw of Context Information Security |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2818 | AbdulAziz Hariri of HP's Zero Day Initiative |
MS14-051 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-2819 | Zeguang Zhao of Team509 and Liang Chen of KeenTeam (@K33nTeam) working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2820 | Arthur Gerkis working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2821 | Bo Qu of Palo Alto Networks |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2822 | Bo Qu of Palo Alto Networks |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2823 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2824 | Yuki Chen of Qihoo 360 |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2825 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2826 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2827 | Simon Zuckerbraun of HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4050 | Omair working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4051 | Peter 'corelanc0d3r' Van Eeckhoutte of Corelan working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4052 | An anonymous researcher working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4052 | Bo Qu of Palo Alto Networks |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4055 | Simon Zuckerbraun of HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4056 | Peter 'corelanc0d3r' Van Eeckhoutte of Corelan working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4057 | Yuki Chen of Trend Micro, working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4058 | Sky working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4063 | An anonymous researcher working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4067 | Wei Wang of VulnHunt |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4067 | lokihardt@ASRT, working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4078 | Yujie Wen of Qihoo 360 |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4145 | Omair working with HP's Zero Day Initiative |
MS14-051 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-6354 | Omair working with HP's Zero Day Initiative |
MS14-049 | Windows Installer Repair Vulnerability | CVE-2012-1814 | Denis Gundarev of Entisys |
MS14-049 | Defense-in-depth changes | Stefan Kanthak | |
MS14-048 | OneNote Remote Code Execution Vulnerability | CVE-2014-2815 | Eduardo Prado working with Beyond Security's SecuriTeam Secure Disclosure Program |
MS14-047 | LRPC ASLR Bypass Vulnerability | CVE-2014-0316 | Alex Ionescu |
MS14-045 | Font Double-Fetch Vulnerability | CVE-2014-1819 | Wang Yu of Qihoo 360 |
MS14-045 | Windows Kernel Pool Allocation Vulnerability | CVE-2014-4064 | Ilja Van Sprundel |
MS14-043 | CSyncBasePlayer Use After Free Vulnerability | CVE-2014-4060 | Alisa Esage (@alisaesage) working with HP's Zero Day Initiative |
July 2014 | |||
MS14-041 | DirectShow Elevation of Privilege Vulnerability | CVE-2014-2780 | VUPEN working with HP's Zero Day Initiative |
MS14-040 | Ancillary Function Driver Elevation of Privilege Vulnerability | CVE-2014-1767 | Sebastian Apelt working with HP's Zero Day Initiative |
MS14-039 | On-Screen Keyboard Elevation of Privilege Vulnerability | CVE-2014-2781 | lokihardt@ASRT working with HP's Zero Day Initiative |
MS14-038 | Windows Journal Remote Code Execution Vulnerability | CVE-2014-1824 | Hamburgers.maccoy@gmail.com |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1763 | VUPEN working with HP's Zero Day Initiative |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1765 | Andreas Schmidt working with HP's Zero Day Initiative |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1765 | 0016EECD9D7159A949DAD3BC17E0A939 working with HP's Zero Day Initiative |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1765 | 91fba4fa08fe776e7369ab4d96db6578 working with HP's Zero Day Initiative |
MS14-037 | Extended Validation (EV) Certificate Security Feature Bypass Vulnerability | CVE-2014-2783 | Eric Lawrence |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2785 | Bo Qu of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2785 | Liu Long of Qihoo 360 |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2786 | Bo Qu of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2787 | Bo Qu of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2788 | Bo Qu of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2789 | Bo Qu of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2790 | Yujie Wen of Qihoo 360 |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2790 | Liu Long of Qihoo 360 |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2791 | Arthur Gerkis working with HP's Zero Day Initiative |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2792 | Abdul Aziz Hariri, Matt Molinyawe, and Jasiel Spelman of HP's Zero Day Initiative |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2794 | ZhaoWei of KnownSec |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2795 | Hui Gao of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2797 | Royce Lu of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2798 | Bo Qu of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2800 | Bo Qu of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2801 | Bo Qu of Palo Alto Networks |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2802 | Yuki Chen of Qihoo 360 |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2802 | Sky working with HP's Zero Day Initiative |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2802 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2803 | AMol NAik working with VeriSign iDefense Labs |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2803 | Garage4Hackers working with HP's Zero Day Initiative |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2803 | Yuki Chen of Qihoo 360 |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2804 | exp-sky of NSFOCUS Security Team |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2806 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2807 | José A. Vázquez of Yenteasy - Security Research working with VeriSign iDefense Labs |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2809 | mailto:Aniway.Anyway@gmail.com working with HP's Zero Day Initiative |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2813 | Abdul Aziz Hariri of HP's Zero Day Initiative |
MS14-037 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4066 | Bo Qu of Palo Alto Networks |
June 2014 | |||
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0282 | Simon Zuckerbraun, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0282 | Renguang Yuan of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1762 | AbdulAziz Hariri, Matt Molinyawe, and Jasiel Spelman of HP's Zero Day Initiative |
MS14-035 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-1764 | VUPEN, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1766 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1766 | Andreas Schmidt, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1766 | IronRock, working with VeriSign iDefense Labs |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1766 | An anonymous researcher, working with VeriSign iDefense Labs |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1769 | Atte Kettunen of OUSPG |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1769 | Liu Long of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1769 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1769 | AbdulAziz Hariri of HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1769 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1769 | Yuki Chen of Trend Micro, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1770 | Peter 'corelanc0d3r' Van Eeckhoutte of Corelan, working with HP's Zero Day Initiative |
MS14-035 | TLS Server Certificate Renegotiation Vulnerability | CVE-2014-1771 | The Prosecco team of Institut National de Recherche en Informatique et en Automatique (INRIA) |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1772 | Omair, working with VeriSign iDefense Labs |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1772 | Liu Long of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1772 | Jack Tang of Trend Micro |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1772 | Venustech Active-Defense Laboratory |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1773 | John Villamil and Sean Larsson |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1773 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1774 | AMol NAik, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1775 | Stephen Fewer of Harmony Security, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1775 | Hui Gao of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1775 | Arezou Hosseinzad-Amirkhizi of the Vulnerability Research Team, TELUS Security Labs |
MS14-035 | Internet Explorer Information Disclosure Vulnerability | CVE-2014-1777 | James Forshaw of Context Information Security |
MS14-035 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-1778 | James Forshaw of Context Information Security |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1779 | An anonymous researcher, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1780 | Soroush Dalili, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1781 | NSFOCUS Security Team |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1782 | lokihardt@ASRT, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1782 | Liu Long of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1782 | Zhibin Hu of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1782 | Yuki Chen of Trend Micro |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1782 | ZhaoWei of knownsec |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1782 | 35c27308b34d55904da10770e5303503, working with the iSIGHT Partners GVP Program |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1782 | IronRock, working with VeriSign iDefense Labs |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1782 | Sabre, working with VeriSign iDefense Labs |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1783 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1784 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1784 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1784 | Zhibin Hu of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1784 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1785 | SkyLined, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1785 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1785 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1786 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1788 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1789 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1789 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1790 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1791 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1792 | Peter 'corelanc0d3r' Van Eeckhoutte of Corelan, working with VeriSign iDefense Labs |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1792 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1794 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1795 | Xiaobo Chen of FireEye |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1796 | Hui Gao of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1797 | Gareth Heyes, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1799 | Zhibin Hu of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1799 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1799 | 0016EECD9D7159A949DAD3BC17E0A939, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1799 | Sweetchip, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1799 | Sabre, working with VeriSign iDefense Labs |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1799 | Edward Torkington of NCC Group |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1799 | 4f7df027b11a6a44d72b1fa4da62bae7, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1799 | Sky, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1799 | An anonymous researcher, working with VeriSign iDefense Labs |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1800 | SkyLined, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1802 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1803 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1803 | Aniway.Anyway@gmail.com, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1804 | Royce Lu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1804 | Yuki Chen of Trend Micro |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1805 | lokihardt@ASRT, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2753 | Liu Long of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2754 | Liu Long of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2755 | Xin Ouyang of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2755 | Zhibin Hu of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2756 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2756 | 0016EECD9D7159A949DAD3BC17E0A939, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2757 | Simon Zuckerbraun, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2758 | An anonymous researcher, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2759 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2759 | Sabre of VeriSign iDefense Labs |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2760 | Zhibin Hu of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2761 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2761 | 0016EECD9D7159A949DAD3BC17E0A939, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2763 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2764 | Yujie Wen of Qihoo 360 |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2764 | Chen Zhang (demi6od) of NSFOCUS Security Team |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2764 | An anonymous researcher, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2765 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2766 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2767 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2768 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2768 | Yuki Chen of Trend Micro |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2769 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2769 | Venustech Active-Defense Laboratory |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2770 | Xin Ouyang of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2771 | Royce Lu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2772 | Stephen Fewer of Harmony Security, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2773 | Keen Team |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2773 | Bo Qu of Palo Alto Networks |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2775 | AbdulAziz Hariri, Matt Molinyawe, and Jasiel Spelman of HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2776 | AbdulAziz Hariri, Matt Molinyawe, and Jasiel Spelman of HP's Zero Day Initiative |
MS14-035 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-2777 | VUPEN, working with HP's Zero Day Initiative |
MS14-035 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-2782 | An anonymous researcher, working with HP's Zero Day Initiative |
MS14-035 | Defense-in-depth changes | CVE-2014-1816 | Noriaki Iwasaki of Cyber Defense Institute, Inc. |
MS14-034 | Embedded Font Vulnerability | CVE-2014-2778 | s3tm3m, working with VeriSign iDefense Labs |
MS14-033 | MSXML Entity URI Vulnerability | CVE-2014-1816 | Christian Kulenkampff |
MS14-030 | RDP MAC Vulnerability | CVE-2014-0296 | Andrew Swoboda and Tyler Reguly of Tripwire |
May 2014 | |||
MS14-029 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0310 | Fermin J. Serna of the Google Security Team |
MS14-029 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0310 | An anonymous researcher, working with HP's Zero Day Initiative |
MS14-029 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1815 | Clément Lecigne of the Google Security Team |
MS14-029 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1815 | Zhibin Hu of Qihoo |
MS14-028 | iSCSI Target Remote Denial of Service Vulnerability | CVE-2014-0255 | Pawel Wylecial, working with Beyond Security's SecuriTeam Secure Disclosure project |
MS14-028 | iSCSI Target Remote Denial of Service Vulnerability | CVE-2014-0256 | Pawel Wylecial, working with Beyond Security's SecuriTeam Secure Disclosure project |
MS14-026 | TypeFilterLevel Vulnerability | CVE-2014-1806 | James Forshaw of Context Information Security |
MS14-023 | Microsoft Office Chinese Grammar Checking Vulnerability | CVE-2014-1756 | NSFOCUS Security Team |
MS14-023 | Token Reuse Vulnerability | CVE-2014-1808 | Arnaud Maillet from ANSSI |
MS14-022 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1776 | FireEye, Inc. |
April 2014 | |||
MS14-020 | Arbitrary Pointer Dereference Vulnerability | CVE-2014-1759 | An anonymous researcher working with VeriSign iDefense Labs |
MS14-019 | Windows File Handling Vulnerability | CVE-2014-0315 | Stefan Kanthak |
MS14-018 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0325 | An anonymous researcher working with HP's Zero Day Initiative |
MS14-018 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1751 | Dr. Bo Qu of Palo Alto Networks |
MS14-018 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1752 | Dr. Bo Qu of Palo Alto Networks |
MS14-018 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1753 | Yuki Chen of Trend Micro, working with HP's Zero Day Initiative |
MS14-018 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1755 | 096dc2a463051c0ac4b7caaf233f7eff and AMol NAik working with VeriSign iDefense Labs |
MS14-018 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-1760 | Abdul-Aziz Hariri of HP's Zero Day Initiative |
MS14-017 | Microsoft Office File Format Converter Vulnerability | CVE-2014-1757 | Will Dormann of the CERT/CC |
MS14-017 | Microsoft Word Stack Overflow Vulnerability | CVE-2014-1758 | Yuhong Bao |
MS14-017 | Word RTF Memory Corruption Vulnerability | CVE-2014-1761 | Drew Hintz, Shane Huntley, and Matty Pellegrino of the Google Security Team |
March 2014 | |||
MS14-016 | SAMR Security Feature Bypass Vulnerability | CVE-2014-0317 | Andrew Bartlett of the Samba Team and Catalyst IT |
MS14-016 | SAMR Security Feature Bypass Vulnerability | CVE-2014-0317 | Muhammad Faisal Naqvi of Pakistan |
MS14-015 | Win32k Information Disclosure Vulnerability | CVE-2014-0323 | Alexander Chizhov |
MS14-014 | Silverlight DEP/ASLR Bypass Vulnerability | CVE-2014-0319 | NSFOCUS Information Technology Co., Ltd. |
MS14-013 | DirectShow Memory Corruption Vulnerability | CVE-2014-0301 | An anonymous researcher working with VeriSign iDefense Labs |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0297 | lokihardt@ASRT, working with HP's Zero Day Initiative |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0297 | Amol Naik working with VeriSign iDefense Labs |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0297 | Edward Torkington from NCC Group |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0297 | Hui Gao of Palo Alto Networks |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0298 | lokihardt@ASRT, working with HP's Zero Day Initiative |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0299 | José A. Vázquez of Yenteasy - Security Research working with HP's Zero Day Initiative |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0302 | Bo Qu of Palo Alto Networks |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0303 | Bo Qu of Palo Alto Networks |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0304 | Hui Gao of Palo Alto Networks |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0304 | Zhibin Hu of Qihoo |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0305 | Tianfang Guo of Palo Alto Networks |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0306 | Jason Kratzer working with VeriSign iDefense Labs |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0307 | Jason Kratzer working with HP's Zero Day Initiative |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0308 | lokihardt@ASRT, working with HP's Zero Day Initiative |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0308 | Bo Qu of Palo Alto Networks |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0308 | Jason Kratzer working with HP's Zero Day Initiative |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0309 | Amol Naik working with VeriSign iDefense Labs |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0309 | Renguang Yuan of Qihoo 360 |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0311 | Scott Bell of Security-Assessment.com |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0311 | Yujie Wen of Qihoo |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0312 | Simon Zuckerbraun working with HP's Zero Day Initiative |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0313 | Omair working with HP's Zero Day Initiative |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0314 | Bo Qu of Palo Alto Networks |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0314 | Zhibin Hu of Qihoo |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0314 | Liu Long of Qihoo |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0314 | Anil Aphale |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0321 | Bo Qu of Palo Alto Networks |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0321 | Yujie Wen of Qihoo |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0321 | Zhibin Hu of Qihoo |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0321 | Liu Long of Qihoo |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0321 | Abdul-Aziz Hariri of HP's Zero Day Initiative |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0321 | Yuki Chen of Trend Micro |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0322 | FireEye, Inc. |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0322 | Liu Long of Qihoo |
MS14-012 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-4112 | José A. Vázquez of Yenteasy - Security Research working with HP's Zero Day Initiative |
February 2014 | |||
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0267 | Liang Chen of KeenTeam (@K33nTeam) |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0267 | Code Audit Labs of https://www.vulnhunt.com/VulnHunt |
MS14-010 | Internet Explorer Elevation of Privilege Vulnerability | CVE-2014-0268 | James Forshaw of Context Information Security |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0269 | Simon Zuckerbraun working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0270 | Jose A. Vazquez of Yenteasy - Security Research working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0270 | Jose A. Vazquez of Yenteasy - Security Research working with VeriSign iDefense Labs |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0272 | Bo Qu of Palo Alto Networks |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0273 | Bo Qu of Palo Alto Networks |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0274 | Arthur Gerkis working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0274 | lokihardt@ASRT working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0275 | Simon Zuckerbraun working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0276 | Scott Bell of Security-Assessment.com |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0277 | Scott Bell of Security-Assessment.com |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0278 | Bo Qu of Palo Alto Networks |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0278 | An anonymous researcher working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0279 | Scott Bell of Security-Assessment.com |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0279 | Bo Qu of Palo Alto Networks |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0280 | Scott Bell of Security-Assessment.com |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0281 | cons0ul and suto working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0283 | Sachin Shinde |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0284 | Sachin Shinde |
MS14-010 | Internet Explorer Memory Corruption VUlnerability | CVE-2014-0285 | Simon Zuckerbraun working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0285 | An anonymous researcher working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0286 | Simon Zuckerbraun working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0287 | Peter 'corelanc0d3r' Van Eeckhoutte of Corelan working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0288 | Arthur Gerkis working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0289 | lokihardt@ASRT working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0290 | Bo Qu of Palo Alto Networks |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0290 | Zhibin Hu of Qihoo |
MS14-010 | Internet Explorer Memory Corruption Vulnerability | CVE-2014-0290 | Yuki Chen of Trend Micro, working with HP's Zero Day Initiative |
MS14-010 | Internet Explorer Cross-domain Information Disclosure Vulnerability | CVE-2014-0293 | Dieyu dieu deus deva divine dio theos dievas dewa ilu Diyin Ayóo Átʼéii atua tiānzhŭ Yahweh Zeus Odin El |
MS14-009 | Type Traversal Vulnerability | CVE-2014-0257 | James Forshaw of Context Information Security |
MS14-007 | Microsoft Graphics Component Memory Corruption Vulnerability | CVE-2014-0263 | Omair, working with HP's Zero Day Initiative |
MS14-005 | MSXML Information Disclosure Vulnerability | CVE-2014-0266 | FireEye, Inc. |
January 2014 | |||
MS14-004 | Query Filter DoS Vulnerability | CVE-2014-0261 | Andrey Maykov, Lead Developer in FTO Project |
MS14-003 | Win32k Window Handle Vulnerability | CVE-2014-0262 | xiaohong shi of Qihoo |
MS14-002 | Kernel NDProxy Vulnerability | CVE-2013-5065 | FireEye, Inc. |
MS14-001 | Word Memory Corruption Vulnerability | CVE-2014-0258 | Mateusz Jurczyk, Ivan Fratric, and Ben Hawkes of the Google Security Team |
MS14-001 | Word Memory Corruption Vulnerability | CVE-2014-0259 | Mateusz Jurczyk, Ivan Fratric, and Ben Hawkes of the Google Security Team |
MS14-001 | Word Memory Corruption Vulnerability | CVE-2014-0260 | Mateusz Jurczyk, Ivan Fratric, and Ben Hawkes of the Google Security Team |