January, 2008

  • MSRC Blog: Security Advisory 947563

    Hello, Bill here, I wanted to let you know that we have just posted Microsoft Security Advisory (947563) . This advisory contains information about a targeted attack exploiting a vulnerability in Microsoft Office Excel. Our investigation has shown that this vulnerability affects Microsoft Office Excel 2003 Service Pack 2, Microsoft Office Excel Viewer 2003, Microsoft Office Excel 2002, Microsoft Office Excel 2000 and Microsoft Excel 2004 for Mac. Microsoft Office Excel 2003 Service Pack...
  • January 2008 Advance Notification

    Hello, Bill here. I wanted to let you know that we just posted our Advance Notification for next week’s bulletin release which will occur on Tuesday, January 8, 2008 around 10 a.m. Pacific Standard Time. It is important to remember that while the information posted below is intended to help with your planning, because it is preliminary information, it is subject to change. As part of our regularly scheduled bulletin release, we’re currently planning to release: · Two Microsoft Security...
  • January 2008 Monthly Release

    Happy New Year! I hope 2008 is off to a wonderful start for you! This is Tami Gallupe, MSRC Release Manager, and we’re starting off the year here in MSRC-land with the release of two bulletins and a security advisory. The first bulletin, MS08-001 , addresses a vulnerability in TCP(IP)/IGMP that could allow remote code execution. It has a maximum severity of Critical . The other bulletin, MS08-002 , addresses a vulnerability in LSASS that could allow local elevation of privilege. It has...