Navigation section

advisory

  1. News

    TA16-105A: Apple Ends Support for QuickTime for Windows; New Vulnerabilities Announced

    Original release date: April 14, 2016 Systems Affected Microsoft Windows with Apple QuickTime installed Overview According to Trend Micro, Apple will no longer be providing security updates for QuickTime for Windows, leaving this software vulnerable to exploitation. [1] Description All...
    • News
    • Thread
    • advisory apple cybersecurity data loss exploitation integrity privacy quicktime remote access security software support trend micro uninstall vulnerability windows zero day initiative
    • Replies: 0
    • Forum: Security Alerts
  2. News

    3137909 - Vulnerabilities in ASP.NET Templates Could Allow Tampering - Version: 1.1

    Revision Note: V1.1 (February 10, 2016): Advisory updated to include download information for Microsoft ASP.NET Web Frameworks, and Tools and Microsoft ASP.NET and Web Tools. This is an informational change only. Summary: Microsoft is releasing this security advisory to provide information about...
    • News
    • Thread
    • 2016 advisory asp.net components development february guidance information microsoft mvc5 mvc6 public versions revision security tampering tools update visual studio vulnerability web frameworks
    • Replies: 0
    • Forum: Security Alerts
  3. News

    3123479 - Deprecation of SHA-1 Hashing Algorithm for Microsoft Root Certificate Program -...

    Revision Note: V1.0 (January 12, 2016): Advisory published. Summary: Microsoft is announcing a policy change to the Microsoft Root Certificate Program. The new policy no longer allows root certificate authorities to issue X.509 certificates using the SHA-1 hashing algorithm for the purposes of...
    • News
    • Thread
    • 2016 advisory attack certificate code signing deprecation digital certificates man-in-the-middle microsoft phishing policy change revision note root certificate security sha1 spoofing ssl technet v1.0 x.509
    • Replies: 0
    • Forum: Security Alerts
  4. News

    3118753 - Updates for ActiveX Kill Bits 3118753 - Version: 1.0

    Revision Note: V1.0 (January 12, 2016): Advisory published. Summary: Microsoft is releasing a new set of ActiveX kill bits with this advisory. These ActiveX kill bits are included in the Internet Explorer cumulative update released on January 12, 2016. Continue reading...
    • News
    • Thread
    • 2016 activex advisory browser security content advisory cumulative update internet explorer kill bits microsoft patch management revision note security security advisory software update tech news update version 1.0 vulnerability web browsing
    • Replies: 0
    • Forum: Security Alerts
  5. News

    3118753 - Updates for ActiveX Kill Bits 3118753 - Version: 1.0

    Revision Note: V1.0 (January 12, 2016): Advisory published. Summary: Microsoft is releasing a new set of ActiveX kill bits with this advisory. These ActiveX kill bits are included in the Internet Explorer cumulative update released on January 12, 2016. Continue reading...
    • News
    • Thread
    • 2016 activex advisory cumulative internet explorer kill bits microsoft revision note security update version 1.0 web security windows
    • Replies: 0
    • Forum: Security Alerts
  6. News

    3123479 - Deprecation of SHA-1 Hashing Algorithm for Microsoft Root Certificate Program -...

    Revision Note: V1.0 (January 12, 2016): Advisory published. Summary: Microsoft is announcing a policy change to the Microsoft Root Certificate Program. The new policy no longer allows root certificate authorities to issue X.509 certificates using the SHA-1 hashing algorithm for the purposes of...
    • News
    • Thread
    • 2016 advisory attack certificate code signing content spoofing deprecation digital certificates hashing man-in-the-middle microsoft phishing policy change revision note root certificate security sha1 ssl x.509
    • Replies: 0
    • Forum: Security Alerts
  7. News

    3123040 - Inadvertently Disclosed Digital Certificate Could Allow Spoofing - Version: 1.0

    Revision Note: V1.0 (December 8, 2015): Advisory published. Summary: Microsoft is aware of an SSL/TLS digital certificate for *.xboxlive.com for which the private keys were inadvertently disclosed. The certificate could be used in attempts to perform man-in-the-middle attacks. It cannot be used...
    • News
    • Thread
    • advisory certificate cybersecurity digital certificates man-in-the-middle microsoft private key security security advisory spoofing ssl supported releases technet tls update v1.0 vulnerability windows xbox live
    • Replies: 0
    • Forum: Security Alerts
  8. News

    3123040 - Inadvertently Disclosed Digital Certificate Could Allow Spoofing - Version: 1.0

    Revision Note: V1.0 (December 8, 2015): Advisory published. Summary: Microsoft is aware of an SSL/TLS digital certificate for *.xboxlive.com for which the private keys were inadvertently disclosed. The certificate could be used in attempts to perform man-in-the-middle attacks. It cannot be used...
    • News
    • Thread
    • 2015 advisory certificate cybersecurity digital certificates man-in-the-middle microsoft private key revision note security spoofing ssl support technet tls update v1.0 vulnerability windows xbox live
    • Replies: 0
    • Forum: Security Alerts
  9. News

    3119884 - Inadvertently Disclosed Digital Certificates Could Allow Spoofing - Version: 1.0

    Revision Note: V1.0 (November 30, 2015): Advisory published. Summary: Microsoft is aware of unconstrained digital certificates from Dell Inc. for which the private keys were inadvertently disclosed. One of these unconstrained certificates could be used to issue other certificates, impersonate...
    • News
    • Thread
    • advisory attack prevention content spoofing cybersecurity dell digital certificates domain impersonation man-in-the-middle microsoft phishing private key revision note security spoofing supported releases tech news v1.0 vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  10. News

    3119884 - Inadvertently Disclosed Digital Certificates Could Allow Spoofing - Version: 1.0

    Revision Note: V1.0 (November 30, 2015): Advisory published. Summary: Microsoft is aware of unconstrained digital certificates from Dell Inc. for which the private keys were inadvertently disclosed. One of these unconstrained certificates could be used to issue other certificates, impersonate...
    • News
    • Thread
    • 2015 advisory attack awareness content spoofing cybersecurity dell digital certificates impersonation man-in-the-middle microsoft phishing private key revision security spoofing supported releases v1.0 vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  11. News

    3108638 - Update for Windows Hyper-V to Address CPU Weakness - Version: 1.0

    Revision Note: V1.0 (November 10, 2015): Advisory published. Summary: Microsoft is announcing the availability of a security update for Windows Hyper-V to protect against a denial of service condition that can be triggered with certain central processing unit (CPU) chipsets. Although the...
    • News
    • Thread
    • 2015 advisory chipset cpu denial of service exploitation hyper-v kernel-mode microsoft operating system patch security system update technology update version 1.0 virtualization weakness windows
    • Replies: 0
    • Forum: Security Alerts
  12. News

    Microsoft security advisory: Update to improve AppLocker certificate handling: September 8,...

    Link Removed
    • News
    • Thread
    • advisory applocker certificate handling microsoft security september update
    • Replies: 0
    • Forum: Knowledge Base (KB)
  13. News

    3074162 - Vulnerability in Microsoft Malicious Software Removal Tool Could Allow Elevation...

    Severity Rating: Important Revision Note: V1.0 (July 14, 2015): Advisory published Summary: Microsoft is releasing this security advisory to inform customers that an update to the Microsoft Malicious Software Removal Tool (MSRT) is available that addresses a security vulnerability that was...
    • News
    • Thread
    • 2015 admin rights advisory attack cybersecurity dll elevation of privilege exploit malicious software removal tool microsoft msrt privilege revision note risk security technet update vulnerability
    • Replies: 0
    • Forum: Security Alerts
  14. News

    June 2015 Updates

    Today, as part of Update Tuesday, we released 8 security bulletins. We encourage customers to apply all of these updates. For more information about this month’s security updates, including the detailed view of the Exploitability Index (XI), visit the Microsoft Bulletin Summary webpage. If you...
    • News
    • Thread
    • 2015 advisory bulletin cybersecurity exploitability insecurity malware microsoft monthly update msrc patch security software update system patch technet threats update vulnerability windows update
    • Replies: 0
    • Forum: Security Alerts
  15. News

    3042058 - Update to Default Cipher Suite Priority Order - Version: 1.0

    Revision Note: V1.0 (May 12, 2015): Advisory published. Summary: Microsoft is announcing the availability of an update to cryptographic cipher suite prioritization in Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, Windows 8.1, and Windows Server 2012 R2. The update adds...
    • News
    • Thread
    • advisory cipher cipher suites cryptography default encryption improvements microsoft os upgrade priority security server 2008 server 2012 system update update version 1.0 windows 7 windows 8 windows 8.1
    • Replies: 0
    • Forum: Security Alerts
  16. News

    May 2015 Updates

    Today, as part of Update Tuesday, we released 13 security bulletins. We encourage customers to apply all of these updates. For more information about this month’s security updates, including a detailed view of the Exploitability Index (XI), visit the Microsoft Bulletin Summary webpage. If you...
    • News
    • Thread
    • advisory bulletin customer advisory cybersecurity exploitability follow information may updates microsoft msrc network patch security technet threats twitter update update tuesday vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  17. News

    Microsoft security advisory: Update to default cipher suite priority order: May 12, 2015

    Link Removed
    • News
    • Thread
    • 2015 advisory cipher may microsoft order priority security suite update
    • Replies: 0
    • Forum: Knowledge Base (KB)
  18. News

    3042058 - Update to Default Cipher Suite Priority Order - Version: 1.0

    Revision Note: V1.0 (May 12, 2015): Advisory published. Summary: Microsoft is announcing the availability of an update to cryptographic cipher suite prioritization in Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, Windows 8.1, and Windows Server 2012 R2. The update adds...
    • News
    • Thread
    • advisory cipher cryptography default encryption improvements operating system prioritization security suite update windows 7 windows 8 windows 8.1 windows server
    • Replies: 0
    • Forum: Security Alerts
  19. News

    Microsoft security advisory: Local Administrator Password Solution (LAPS) now available:...

    Link Removed
    • News
    • Thread
    • administrator advisory laps microsoft password security solutions update
    • Replies: 0
    • Forum: Knowledge Base (KB)
  20. News

    3062591 - Local Administrator Password Solution (LAPS) Now Available - Version: 1.0

    Revision Note: V1.0 (May 1, 2015): V1.0 (May 1, 2015): Advisory published. Summary: Microsoft is offering the Local Administrator Password Solution (LAPS) that provides a solution to the issue of using a common local account with an identical password on every computer in a domain. LAPS resolves...
    • News
    • Thread
    • administration administrator advisory domain help desk laps microsoft password random password security
    • Replies: 0
    • Forum: Security Alerts
Back
Top