September, 2007

  • September 2007 Bulletin Release Advance Notification

    Hello, This is Christopher Budd and today is the Thursday before the scheduled September 2007 bulletin release on Tuesday Sept. 11, 2007. As we do each month, as part of our processes to help make security updates more predictable and assist with your planning, we’ve posted our Advance Notification with preliminary information about next week’s release. As a reminder, we provide this early information to help with planning, but it can change between now and next Tuesday. As part of our regularly...
  • September 2007 Monthly Release

    Hello, This is Christopher Budd. I wanted to go ahead and let you know that we’ve posted our bulletins for the September 2007 monthly release. This month we’ve released: MS07-051 : This bulletin addresses a vulnerability in Microsoft Agent on Windows 2000 only. This bulletin is rated “Critical”. MS07-052 : This bulletin addresses a vulnerability in Crystal Reports which shipped with some versions of Visual Studio. You can find out which specific versions are affected in the...
  • Technical Tips and Insights on MS07-054 and KB941835

    Hi everyone. Jonathan from the SWI team in the MSRC here again. I'd like to give some more detail around the conditions required to exploit MS07-054, the vulnerability in MSN Messenger and Windows Live Messenger. You can read from the bulletin that MS07-054 affects MSN Messenger 6.2, 7.0, 7.5 and Windows Live Messenger 8.0. It has been fixed in Windows Live Messenger 8.1, which has been automatically offered to users since February 2007. The vulnerability is in the library that handles the video...
  • Detection and Deployment Logic Update for MS07-052

    Hi everyone. Ben from the MSRC here. I am the case manager that handled the Crystal Reports for Visual Studio Bulletin, MS07-052 , and I wanted to let you know that today we updated our detection and deployment logic for that bulletin. First, I want to note that we’re not making any changes to the update itself given it protects against the vulnerability discussed in the bulletin. If you’ve applied it successfully already, you have no further action. What we have done is change our detection...
  • Announcing BlueHat v6

    Hi, Andrew Cushman here. I wanted to let you know that BlueHat is back in Redmond , as BlueHat v6: The Vuln Behind The Curtain opens September 27th and 28th. Once again we have two days of great security content that covers the spectrum of issues in security. For more information please see the BlueHat Blog at http://blogs.technet.com/bluehat/ . Thanks. Andrew *This posting is provided "AS IS" with no warranties, and confers no rights.*