September, 2012

  • September ANS and an important heads-up concerning certificates

    简体中文 , 繁體中文 , Français , Italiano , 日本語 , 한국어 , México , Portuguese (Brazil) , Русский Hello there. As we prepare for September’s two security updates, we’d like to remind you about an important change to Windows’ certificate requirements included in Security Advisory 2661254 (Update For Minimum Certificate Key Length). In June, we began communicating this change, which will help improve security across the Windows platform by increasing the requirement for certificates...
  • Update Tuesday overview for September 2012

    As I previously mentioned in the Advance Notification blog on Thursday, today we are releasing two security bulletins, both of which are rated Important. These bulletins will increase protection by addressing two unique vulnerabilities in the following Microsoft products: MS12-061 (Visual Studio Team Foundation Server) This security update resolves a privately reported vulnerability in Visual Studio Team Foundation Server. This bulletin is rated Important for Microsoft Visual Studio Team...
  • September 2012 Security Bulletin Webcast, Q&A, and Slide Deck

    Hello, Today we published the September Security Bulletin Webcast Questions & Answers page . During the webcast, we fielded thirteen questions, focusing primarily on MS12-061 , covering Visual Studio Team Foundation Server; MS12-062 , affecting System Center Configuration Manager; and Security Advisory 2736233 , addressing Update Rollup for ActiveX Kill Bits. We have the slide deck from the webcast available for on-demand viewing as well. We invite our customers to join us for the next...
  • Microsoft Releases Security Advisory 2757760

    Today we released Security Advisory 2757760 to address an issue that affects Internet Explorer 9 and earlier versions if a user views a website hosting malicious code. Internet Explorer 10 is not affected. We have received reports of only a small number of targeted attacks and are working to develop a security update to address this issue. In the meantime, customers using Internet Explorer are protected when they deploy the following workarounds and mitigations included in the advisory: ...
  • Additional information about Internet Explorer and Security Advisory 2757760

    We will release a Fix it in the next few days to address an issue in Internet Explorer, as outlined in the Security Advisory 2757760 that we released yesterday. While we have only seen a few attempts to exploit the issue, impacting an extremely limited number of people, we are taking this proactive step to help ensure Internet Explorer customers are protected and able to safely browse online. The Fix it is an easy-to-use, one-click, full-strength solution any Internet Explorer user can...
  • Internet Explorer Fix it available now; Security Update scheduled for Friday

    Earlier this week, an issue impacting Internet Explorer affected a small number of customers. The potential exists, however, that more customers could be affected. As a result, today we have released a Fix it that is available to address that issue. This is an easy, one-click solution that will help protect your computer right away. It will not affect your ability to browse the web, and it does not require a reboot of your computer. Then, on this Friday, Sept. 21, we will release a cumulative...
  • Microsoft releases MS12-063 – Cumulative Security Update for Internet Explorer

    Today we released Security Update MS12-063 to address limited attacks against a small number of computers through a vulnerability in Internet Explorer versions 9 and earlier. The majority of customers have automatic updates enabled and will not need to take any action because protections will be downloaded and installed automatically. For those manually updating, we encourage you to apply this update as quickly as possible. In addition to addressing the issue described in Security Advisory 2757760...
  • Security Advisory 2755801 addresses Adobe Flash Player issues

    Today we released Security Advisory 2755801 that addresses vulnerabilities in Adobe Flash Player in Internet Explorer 10 on Windows 8. The majority of customers have automatic updates enabled and will not need to take any action because protections will be downloaded and installed automatically. Customers who do not use automatic updates should apply the guidance in the advisory immediately using update management software, or by checking the Microsoft Update service, to help ensure protection. We...
  • September 2012 Out-of-Band Security Bulletin Webcast, Q&A, and Slide Deck

    Hello. Today we’re publishing the September 2012 Security Bulletin Out-of-Band Webcast Questions & Answers page . During the webcast, we fielded 19 questions. Those were focused on MS12-063 , the out-of-band cumulative release for Internet Explorer, and Security Advisory 2755801 , which involves an issue with the Adobe Flash Player implementation for Internet Explorer 10. All questions are included on the Q&A page. Thanks, Yunsun Wee Director, Trustworthy Computing