March’s Patch Tuesday listed only five updates, but they concealed a multitude of ills. One of the items (MS14-012) fixes eighteen vulnerabilities in Internet Explorer alone. The highlight: a fix to thwart remote-code execution from a “specially crafted webpage.”
Another patch fixes Silverlight (MS14-014) so someone can’t steer users to a bad Web site. Yet another elevation-of-privilege bug (MS14-015) is stomped out in Windows, and DirectX is relieved of a creepy remote-code execution (MS14-013). Also squashed was an account log-in vulnerability (MS14-016).
Read more of the gory details thanks to our colleagues at Computerworld.