This April Patch Tuesday Bulletin brings 11 patches with it. There are 4 critical and 7 important with only a single bulletin addressing a vulnerability that is being actively exploited. Focus on the initial 4 critical patches released with special emphasis on Internet Explorer MS15-032 since there are report of active attacks. The remaining 3 critical patches remediate issues with Microsoft Office and Windows but there have not been reports of active attacks. Work on remediating the elevation of privilege vulnerabilities next by applying MS15-036, MS15-037, and MS15-038. Look at applying MS15-039 and MS15-041 since they address issues with widely used technologies like XML core services and .NET. Review MS15-040 and MS15-042 to determine if they are applicable to the environment and apply as necessary.
When it comes to endpoint security, the best first line of defense is patch management. Take the first step to quantifying your IT risk and enhancing your endpoint security posture with the Lumension® Patch Scanner you can:
Click here assess your vulnerabilities now
Visit the Lumension Patch Tuesday Center