Browse by Tags

Tagged Content List
  • Blog Post: August 2014 Security Updates

    Today, as part of Update Tuesday, we released nine security updates – two rated Critical and seven rated Important – to address 37 Common Vulnerabilities & Exposures (CVEs) in SQL Server, OneNote, SharePoint, .NET, Windows and Internet ...read more
  • Blog Post: Theoretical Thinking and the June 2014 Bulletin Release

    As security professionals, we are trained to think in worst-case scenarios. We run through the land of the theoretical, chasing “what if” scenarios as though they are lightning bugs to be gathered and stashed in a glass jar. Most of time, ...read more
  • Blog Post: Security Bulletin Webcast Questions and Answers - April 2009

    Over on the MSRC blog they posted this months Q&A in case you want to see everything that was discussed during the questions and answers part of the webcast.  I have Al Brown’s intro and a link below: ======== During this month’s webcast we were able to address 15 questions in the time allotted...
  • Blog Post: December 2009 Security Bulletin Webcast

    Looks like the MSRC posted the December security bulleting webcast last Friday: There is one question that I wanted to provide a little more information on and that references reports of KB973917 causing problems with Internet Information Services (IIS) 6.0 running on Windows Server 2003 SP2. There are...
  • Blog Post: Q&A from the October 2011 Security Bulletin Webcast

    Hello, Today we published the October Security Bulletin Webcast Questions & Answers page . We fielded eight questions across all bulletins. There was one question that we were unable to answer during the webcast due to time constraints, and we ...read more
  • Blog Post: December 2008 Monthly Security Bulletins Released

    Looks like the December 2008 monthly security bulletins are out and the new ones include: MS08-070 : Vulnerabilities in Visual Basic 6.0 Runtime Extended Files (ActiveX Controls) Could Allow Remote Code Execution (932349) which is rated “Critical” MS08-071 : Vulnerabilities in GDI Could Allow...
  • Blog Post: Questions about Timing and Microsoft Security Advisory 972890

    I just posted about the MSRC’s Advance Notification for the July 2009 security bulleting release but as soon as I did that I saw that they also followed that up with some insight into 972890: We’ve gotten some questions from customers about when we got the first report of this vulnerability and how long...
  • Blog Post: February 2009 Security Bulletin Webcast Videos

    Looks like the good folks over on the Microsoft Security Response Center blog now have streaming video of the security bulletin webcasts so if you missed this and want to check it out now you can.  They have the videos broken out into two parts, the first covering the new information and the second...
  • Blog Post: FYI: The Microsoft Security Advisory 961051 was updated last Friday

    Just an FYI in case you missed it but last Friday we updated some of the information surrounding 964051 with more on what we know about it as well as some of the workarounds.  The updated official release notes are here: http://www.microsoft.com/technet/security/advisory/961051.mspx . The clarifications...
  • Blog Post: Advance Notification for the December 2009 Security Bulletin Release

    For December we are planning to release six new security bulletins addressing 12 vulnerabilities in Windows, Internet Explorer (IE) and Microsoft Office products. Three of the bulletins have a maximum severity rating of Critical and three have a maximum severity rating of Important. For all the details...
  • Blog Post: Predictions and the January 2013 Bulletin Release

    At the end of each year, some folks take a moment to jot down predictions about what the coming year has in store. I, on the other hand, do not do predictions. I am neither prognosticator, seer, fortune teller, prophet, clairvoyant, soothsayer, nor medium; ...read more
  • Blog Post: Q&A From the August 2011 Security Bulletin Webcast

    Hello, Today we published the August Security Bulletin Webcast Questions & Answers page . We fielded six questions on various topics during the webcast, including bulletins released and the Malicious Software Removal Tool. There was one question ...read more
  • Blog Post: Advance Notification Service for August 2013 Security Bulletin Release

    Today we’re providing advance notification for the release of eight bulletins, three Critical and five Important, for August 2013. The Critical updates address vulnerabilities in Microsoft Windows, Internet Explorer and Exchange. As usual, we’ve ...read more
  • Blog Post: Security Advisory 980088 was released today

    Microsoft is investigating a publicly reported vulnerability in Internet Explorer for customers running Windows XP or who have disabled Internet Explorer Protected Mode. This advisory contains information about which versions of Internet Explorer are vulnerable as well as workarounds and mitigations...
  • Blog Post: August 2012 Security Bulletin Webcast, Q&A, and Slide Deck

    Hello. Today we’re publishing the August 2012 Security Bulletin Webcast Questions & Answers page . During the webcast, we fielded twelve questions focusing primarily on MS12-060 covering Windows Common Controls, MS12-052 regarding Internet ...read more
  • Blog Post: July 2009 Out-of-Band releases scheduled for tomorrow (7/28)

    Just an FYI that an out of band release is scheduled for tomorrow at 10:00am Pacific time.  The release is to address a single issue but in order to provide the broadest protections possible to customers we’ll be releasing two separate security bulletins: One Security Bulletin for Visual Studio...
  • Blog Post: Questions and Answers from the November 2009 Security Bulletin Webcast

    The good folks at the Microsoft Security Response Center announced that the questions and answers from the November Security Bulletin webcast have been posted along with the video from the webcast itself.  You can get all the details at http://blogs.technet.com/msrc/archive/2009/11/13/november-2009...
  • Blog Post: Windows Store App Security Updates

    We are committed to adapting our policies as the world evolves and with the new Windows Store, we evaluated how to best release security updates for Windows Store apps. Our goal is to have a quick, transparent and painless security update process. With ...read more
  • Blog Post: Advance Notification Service for October 2012 Security Bulletin Release

    Today we’re providing advance notification of the release of seven bulletins, one Critical and six Important, for October 2012. The Critical bulletin addresses vulnerabilities in Microsoft Word. The six Important-rated bulletins will address issues ...read more
  • Blog Post: The December bulletins are released

    Hello. As I previously mentioned in the Advance Notification Service blog post on Thursday, today we are releasing 13 security bulletins, three of which are rated Critical in severity, and 10 Important. These bulletins will increase protection by addressing ...read more
  • Blog Post: Microsoft Security Advisory 973882, Microsoft Security Bulletins MS09-034 and MS09-035 Released

    Just an FYI that we released: 973882 - Microsoft Security Advisory: Vulnerabilities in Microsoft Active Template Library (ATL) could allow remote code execution 972260 - MS09-034: Cumulative security update for Internet Explorer and 969706 - MS09-035: Vulnerabilities in Visual Studio Active Template...
  • Blog Post: Q&A from April 2011 Security Bulletin Webcast

    Hello, Today we published the April Security Bulletin Webcast Questions & Answers page . We fielded 14 questions on various topics during the webcast, including bulletins released, deployment tools, and update detection tools. There were two questions ...read more
  • Blog Post: New Microsoft Security Advisory: 961051 - Vulnerability in Internet Explorer Could Allow Remote Code Execution

    Just an FYI that we just released a new advisory for an IE related issue.  The intro and a link are below: ======== Microsoft is investigating new public reports of attacks against a new vulnerability in Internet Explorer. Our investigation so far has shown that these attacks are against Windows...
  • Blog Post: Advance Notification for the November 2009 Security Bulletin Release

    Just a heads up but the folks at the MSRC just announced their Advance Notification for the November 2009 Security Bulletin Release: To help customers plan and prioritize for this month’s security updates, we wanted to let you know that we will be releasing 6 bulletins (three critical and three important...
  • Blog Post: Microsoft Security Advisory 975191 Released

    Just a heads up in case you missed the announcement over on the Microsoft Security Response Center blog about the release of Microsoft Security Advisory 975191 .  According to the site: ” Today, Microsoft released Security Advisory 975191 , to provide customer guidance and protection from a vulnerability...