hake Posted March 11, 2015 ID:946781 Share Posted March 11, 2015 Concerning MS15-024 of March 2015 Patch Tuesday updates, Microsoft states "The vulnerability could allow information disclosure if an attacker convinces a user to visit a website that contains specially crafted PNG images." Is this the kind of thing that MBAE is likely to be able to mitigate? Link to post Share on other sites More sharing options...
Staff pbust Posted March 11, 2015 Staff ID:946789 Share Posted March 11, 2015 No, MBAE is not concerned with information disclosure, privilege escalation, XSS, etc. Only with Remote Code Execution. More info:https://forums.malwarebytes.org/index.php?/topic/136424-frequently-asked-questions/#entry846348 Link to post Share on other sites More sharing options...
hake Posted March 11, 2015 Author ID:946811 Share Posted March 11, 2015 Microsoft Security Bulletin MS15-021 - Critical Vulnerabilities in Adobe Font Driver Could Allow Remote Code Execution (3032323). Can MBAE protect from this? Link to post Share on other sites More sharing options...
Staff pbust Posted March 11, 2015 Staff ID:946814 Share Posted March 11, 2015 Yes it should. But only in Trial, Premium and Corporate builds. The Free version does not shield Word and Excel. Link to post Share on other sites More sharing options...
hake Posted March 12, 2015 Author ID:946873 Share Posted March 12, 2015 Thank you Pedro. That is very valuable. The Adobe font driver vulnerability is said to be a 'nasty' one. In addtion to MS Office applications can it also affect web browsing? I can source a POSReady update (KB3032323) to immunise Windows XP from the Adobe font problem but would prefer not to since there was an update in February's Patch Tuesday which caused MS Office fonts to be malformed in XP (I'm still unaware which KB was responsible). I am now very circumspect with MS updates for POSReady. Link to post Share on other sites More sharing options...
Staff pbust Posted March 12, 2015 Staff ID:946950 Share Posted March 12, 2015 Yes as time goes by the updates applied to XP using the POSReady trick will become more and more un-trustworthy. It might be best to have a spare XP box or VM running on where to test the POSReady updates prior to applying them to the production XP box. Link to post Share on other sites More sharing options...
hake Posted March 12, 2015 Author ID:947054 Share Posted March 12, 2015 I have identified the cause of the distorted fonts. It was KB3013455. This KB also caused problems for Windows Vista and Windows 2008 Server so the XP updates 'fix' was not to blame. I have now caught up with the Patch Tuesday updates for both February and March 2015 without incident, the systems behaving properly on restart. I take the hint about doing a trial run before committing to the updates. Judging from the recent Windows 7 reboot loop after an update, legit MS Windows updates are also an act of faith by the user. Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now