New year, new patches as Microsoft kicks off 2016.
In addition to the usual patches, today also marks end of life for Internet Explorer 8, 9, and 10, with KB3123303 being sent out to nag users to ditch older versions of Internet Explorer in favor of either IE 10 or Microsoft Edge.
Our friends over at Tripwire sent over a note highlighting the IE, Edge, and Exchange fixes as particularly important.
“If you're looking for patches to prioritize this month, Internet Explorer is likely at the top of your list," wrote Tyler Reguly, security researcher and manager of Tripwire's Vulnerability and Exposure Research Team (VERT). "If you happen to be on Windows 10, you can add Edge to that list as well. Enterprises should definitely be aware of the Exchange update, since attackers can target users remotely.”
Without further ado, here are the patches on the table this month:
MS16-001 Cumulative Security Update for Internet Explorer Critical
MS16-002 Cumulative Security Update for Microsoft Edge Critical
MS16-003 Cumulative Security Update for JScript and VBScript to Address Remote Code Execution Critical
MS16-004 Security Update for Microsoft Office to Address Remote Code Execution Critical
MS16-005 Security Update for Windows Kernel-Mode Drivers to Address Remote Code Execution Critical
MS16-006 Security Update for Silverlight to Address Remote Code Execution Critical
MS16-007 Security Update for Microsoft Windows to Address Remote Code Execution Important
MS16-008 Security Update for Windows Kernel to Address Elevation of Privilege Important
MS16-010 Security Update in Microsoft Exchange Server to Address Spoofing Important