November, 2012

  • November 2012 Bulletin Release

    Security Updates Today we released six security bulletins to help protect our customers - four Critical, one Important, and one Moderate – addressing 19 vulnerabilities in Microsoft Windows Shell, Windows Kernel, Internet Explorer, Internet Information Services (IIS), .NET Framework, and Excel. For those who need to prioritize deployment, we recommend focusing on these two Critical updates first: MS12-071 (Internet Explorer): This bulletin addresses three privately disclosed issues, none...
  • Security Advisory 2755801 revised to address Adobe Flash Player issues (Nov. 6, 2012)

    Today, in conjunction with Adobe’s update process, we have revised Security Advisory 2755801 to address issues in Adobe Flash Player in Internet Explorer 10. Customers who have automatic updates enabled will not need to take any action because protections will be downloaded and installed automatically. Customers who do not use automatic updates should apply the guidance in the advisory immediately using update management software, or by checking the Microsoft Update service, to help ensure...
  • Verifying update hashes

    Some of you may have noticed us improving our defense-in-depth practices for bulletins by supplying sha1 and sha2 hashes in the Knowledge Base (KB) articles . This has been most visible in the KB with the addition of the “File hash information” section, but it is also noted in the Frequently Asked Questions (FAQ) section of each bulletin for convenience. From PowerShell you can easily leverage the .Net Cryptographic Services to define a get-sha256 function like Mike Wilbur has done...
  • Advance Notification Service for November 2012 Security Bulletin Release

    Today, we’re providing advance notification for six bulletins to help protect customers against 19 CVEs. The four Critical-rated updates will address 13 vulnerabilities in Microsoft Windows, Internet Explorer and the .NET Framework. One bulletin rated Important will address four vulnerabilities in Microsoft Office and finally, one Moderate update will address two issues in Microsoft Windows. As usual, the bulletin release is scheduled for the second Tuesday of the month, November 13, 2012...
  • November 2012 Security Bulletin Webcast, Q&A, and Slide Deck

    Hello, Today we’re publishing the November 2012 Security Bulletin Webcast Questions & Answers page . During the webcast, we fielded ten questions focusing primarily Windows RT, Windows 8, and Windows Server 2012 detection and deployment, MS12-072 (Windows Shell), and MS12-073 (IIS). All questions are included on the Q&A page. We invite our customers to join us for the next public webcast on Wednesday, December 12th at 11 a.m. PST (UTC -8), when we will go into detail about the...