Hello everyone, this is Christopher Budd. As I noted yesterday , we have teams doing ongoing investigation and research around the technical issues for the vulnerability in Windows Animated Cursor Handling. Today, we’ve made an update to the advisory with additional information from that ongoing work. We’ve added information regarding Windows 2003 Service Pack 2 in the “Related Software” section to note that these versions are affected by the issue as well. Once again, as we have new...

Hello everyone, This is Christopher Budd. We’ve gotten some questions from customers around the security advisory that we released yesterday, Microsoft Security Advisory (935423) . Specifically, we’ve been getting questions about: · When we learned about the vulnerability · When we learned about the attack · What we’re doing to help protect customers · When we expect to release an update · Our recommendation around 3 rd party workarounds or updates I wanted to take a few minutes...

Hey everyone this is Adrian Stone, I wanted to let people know that we have just posted Microsoft Security Advisory (935423) . This advisory addresses new public reports of very limited attacks against a newly reported vulnerability in Microsoft Windows Animated cursor handling. We’ve activated our Software Security Incident Response Process (SSIRP) and there are few items worth noting: In order for this attack to be carried out, a user must either visit a Web site that contains a Web page...

Hello, this is Christopher Budd, Since it’s the second Tuesday for March, I wanted to go ahead and make a short posting to confirm what we announced last Thursday : we are not releasing any security updates today. We are releasing an update to the Malicious Software Removal Tool today: this month’s update removes Win32/Alureon and you can download the tool at www.microsoft.com/malwareremove Since there are no bulletins today, we won’t be hosting our monthly TechNet Security Bulletin webcast...

Hello, This is Christopher Budd and it’s the Thursday before the Second Tuesday for March 2007. As we do each month at this time, we’ve posted our Advance Notification for the upcoming security bulletin release. For the month of March 2007, we will not be releasing any new security updates on March 13, 2007. We will though be making our regular monthly update to the Microsoft Windows Malicious Software Removal Tool. We also will be releasing two high-priority non-security updates through...