Browse by Tags

Tagged Content List
  • Blog Post: Security Bulletin MS14-068 released

    Today, we released an out-of-band security update to address a vulnerability in Kerberos which could allow Elevation of Privilege. This update is for all supported versions of Windows Server and includes a defense-in-depth update for all supported versions ...read more
  • Blog Post: Out-of-band release for Security Bulletin MS14-068

    On Tuesday, November 18, 2014, at approximately 10 a.m. PST, we will release an out-of-band security update to address a vulnerability in Windows. We strongly encourage customers to apply this update as soon as possible, following the directions in ...read more
  • Blog Post: October 2014 Updates

    Today, as part of Update Tuesday, we released eight security updates – three rated Critical and five rated Important - to address 24 Common Vulnerabilities & Exposures (CVEs) in Windows, Office, .NET Framework, .ASP.NET, and Internet Explorer ...read more
  • Blog Post: The September 2014 Security Updates

    Today, as a part of our regular Update Tuesday process, we released four security bulletins – one rated Critical and three rated Important in severity – to address 42 Common Vulnerabilities & Exposures (CVEs) in Microsoft Windows, Internet ...read more
  • Blog Post: July 2014 Security Bulletin Release

    Many around the globe have been following the 2014 FIFA World Cup Brazil™ closely. Regardless of which country you are supporting, many folks have been impressed by the defensive display put on by keeper Tim Howard in a loss against Belgium. It ...read more
  • Blog Post: The May 2014 Security Updates

    Today, we released eight security bulletins – two rated Critical and six rated Important – to address 13 Common Vulnerability & Exposures (CVEs) in .NET Framework, Office, SharePoint, Internet Explorer, and Windows. We encourage you to ...read more
  • Blog Post: Out-of-Band Release to Address Microsoft Security Advisory 2963983

    At approximately 10 a.m. PDT, we will release an out-of-band security update to address the issue affecting Internet Explorer (IE) that was first discussed in Security Advisory 2963983. This update is fully tested and ready for release for all affected ...read more
  • Blog Post: The April 2014 Security Updates

    T. S. Elliot once said, “What we call the beginning is often the end. And to make an end is to make a beginning. The end is where we start from.” So as we put one season to bed, let’s start another by looking at the April security updates ...read more
  • Blog Post: Exploitability Index Improvements & Advance Notification Service for May 2011 Bulletin Release

    Hello everyone, Today we are announcing changes to Microsoft’s Exploitability Index. Since October 2008, we have used the Exploitability Index to provide customers with valuable exploitability analysis for our security bulletins, and starting ...read more
  • Blog Post: KB2839011 Released to Address Security Bulletin Update Issue

    We are aware that some of our customers may be experiencing difficulties after applying security update 2823324 , which we provided in security bulletin MS13-036 on Tuesday, April 9. We’ve determined that the update, when paired with certain third ...read more
  • Blog Post: Advance Notification Service for the April 2013 Security Bulletin Release

    In celebration of spring’s onset, today we’re providing advance notification for the April 2013 release of nine bulletins; two Critical and seven Important. The Critical bulletins address vulnerabilities in Microsoft Windows and Internet Explorer ...read more
  • Blog Post: September 2012 Security Bulletin Webcast, Q&A, and Slide Deck

    Hello, Today we published the September Security Bulletin Webcast Questions & Answers page . During the webcast, we fielded thirteen questions, focusing primarily on MS12-061 , covering Visual Studio Team Foundation Server; MS12-062 , affecting ...read more
  • Blog Post: Gadgets, certificate housekeeping and the July 2012 bulletins

    Before we dive into the July security updates, let’s change up the normal order and take a look at the two Security Advisories we are releasing today. One takes an exciting step into the future, while the other prepares us to take an equally important ...read more
  • Blog Post: Advance Notification Service for October 2012 Security Bulletin Release

    Today we’re providing advance notification of the release of seven bulletins, one Critical and six Important, for October 2012. The Critical bulletin addresses vulnerabilities in Microsoft Word. The six Important-rated bulletins will address issues ...read more
  • Blog Post: The December bulletins are released

    Hello. As I previously mentioned in the Advance Notification Service blog post on Thursday, today we are releasing 13 security bulletins, three of which are rated Critical in severity, and 10 Important. These bulletins will increase protection by addressing ...read more
  • Blog Post: Q&A from April 2011 Security Bulletin Webcast

    Hello, Today we published the April Security Bulletin Webcast Questions & Answers page . We fielded 14 questions on various topics during the webcast, including bulletins released, deployment tools, and update detection tools. There were two questions ...read more
  • Blog Post: April 2013 Security Bulletin Webcast, Q&A, and Slide Deck

    Today we’re publishing the April 2013 Security Bulletin Webcast Questions & Answers page . We fielded nine questions during the webcast, with almost half of those focused on the Remote Desktop Client bulletin ( MS13-024 ). One question that ...read more
  • Blog Post: March 2011 Security Bulletin Release

    Hello all -- Today, as part of our monthly security bulletin release, we have three bulletins addressing four vulnerabilities in Microsoft Windows and Microsoft Office. One bulletin is rated Critical, and this is the bulletin we recommend for priority ...read more
  • Blog Post: Predictions and the January 2013 Bulletin Release

    At the end of each year, some folks take a moment to jot down predictions about what the coming year has in store. I, on the other hand, do not do predictions. I am neither prognosticator, seer, fortune teller, prophet, clairvoyant, soothsayer, nor medium; ...read more
  • Blog Post: A look back at 2011’s security landscape

    Hi everyone – Mike Reavey here. Today, we’re releasing our December set of security updates. As we do every month, we're providing a heads-up on what’s coming in this month’s release as well as offering links to more information ...read more
  • Blog Post: Q&A From the August 2011 Security Bulletin Webcast

    Hello, Today we published the August Security Bulletin Webcast Questions & Answers page . We fielded six questions on various topics during the webcast, including bulletins released and the Malicious Software Removal Tool. There was one question ...read more
  • Blog Post: August 2012 Security Bulletin Webcast, Q&A, and Slide Deck

    Hello. Today we’re publishing the August 2012 Security Bulletin Webcast Questions & Answers page . During the webcast, we fielded twelve questions focusing primarily on MS12-060 covering Windows Common Controls, MS12-052 regarding Internet ...read more
  • Blog Post: January 2011 Security Bulletin Release

    Hello - Today as part of our monthly security bulletin release we have two bulletins addressing three vulnerabilities in Microsoft Windows and Windows Server. This first bulletin is rated Important, while the second is rated Critical. MS11-001 ...read more
  • Blog Post: Certificate Trust List update and the June 2012 bulletins

    For Update Tuesday we’re releasing seven security bulletins – three Critical-class and four Important – addressing 26 unique CVEs to further improve the security postures of Microsoft Windows, Internet Explorer, Dynamics AX, Microsoft ...read more
  • Blog Post: January 2013 Out-of-Band Security Bulletin Webcast, Q&A, and Slide Deck

    Today we’re publishing the January 2013 Out-of-Band Security Bulletin Webcast Questions & Answers page . During the webcast, we fielded 17 questions focusing on Security Update MS13-088 , and SecurityAdvisory 2794220 which was deprecated by ...read more