Critical vulnerabilities fixed in Microsoft IE and SQL Server
Two new critical Internet Explorer (IE) vulnerabilities affecting versions 6, 7, 8, 9, 10, and 11 have been found by Palo Alto Networks researcher Bo Qu and disclosed to Microsoft through its participation in the Microsoft Active Protections Program (MAPP) programme. Both are now included in Microsoft's July 2015 Security Bulletin, and documented in Microsoft Security Bulletins MS15-065 and MS15-066.
The MS15-065 security update for Internet Explorer (3076321) resolves vulnerabilities in Internet Explorer the most severe of which could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
The MS15-066 vulnerability in VBScript scripting engine could allow remote code execution (3072604), again requiring a user to visit fake website, potentially giving an attacker full user rights. If the current user is logged on with administrative user rights, an attacker could take complete control of an affected system and install programs; view, change, or delete data; or create new accounts with full user rights.
A bulletin has also been issued providing an update for MS15-058 vulnerabilities in SQL Server which could allow remote code execution (3065718) if an authenticated attacker runs a specially crafted query that is designed to execute a virtual function from a wrong address, leading to a function call to uninitialised memory. To exploit this vulnerability an attacker would need permissions to create or modify a database.