On Tuesday, January 14, 2014, Microsoft is planning to release four (4) bulletins. Each of the four bulletins are identified as Important.
The updates will be directed to vulnerabilities in Microsoft Windows, Office, and Dynamics AX.
Additionally note that the update provided in MS14-002 fully addresses the issue first described in Security Advisory 2914486, which only affects Windows XP and Server 2003. Microsoft has only seen this issue used in conjunction with a PDF exploit in targeted attacks and not on its own.
ReminderUsers of Windows XP are reminded that support ends for Windows XP on April 8, 2014. See Tim Rains article, The Risk of Running Windows XP After Support Ends April 2014. Note also that Microsoft Security Essentials will no longer be available for download for Windows XP.
As happens each month, Microsoft will also release an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.
- MSRC: Advance Notification Service for January 2014 Security Bulletin Release
- TechNet: Microsoft Security Bulletin Summary for January 2014