(MS14-038) Vulnerability in Windows Journal Could Allow Remote Code Execution (2975689)
Severity: CRITICAL
Advisory Date: JUL 10, 2014
DESCRIPTION
This security update addresses a vulnerability in Microsoft Windows, which can lead to remote code execution if exploited successfully by remote attackers via a specially crafted Journal file.
SOLUTION
AFFECTED SOFTWARE AND VERSION
- Windows RT 8.1
- Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems Service Pack 2
- Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows 8 for 32-bit Systems
- Windows 8 for x64-based Systems
- Windows 8.1 for x64-based Systems
- Windows 8.1 for 32-bit Systems
- Windows 8.1 for x64-based System
- Windows Server 2012
- Windows Server 2012 R2
- Windows RT