Navigation section
advisory
-
Microsoft security advisory: Local Administrator Password Solution (LAPS) now available:...
Link Removed- News
- Thread
- administrator advisory laps microsoft password security solution update
- Replies: 0
- Forum: Knowledge Base (KB)
-
3062591 - Local Administrator Password Solution (LAPS) Now Available - Version: 1.0
Revision Note: V1.0 (May 1, 2015): V1.0 (May 1, 2015): Advisory published. Summary: Microsoft is offering the Local Administrator Password Solution (LAPS) that provides a solution to the issue of using a common local account with an identical password on every computer in a domain. LAPS resolves...- News
- Thread
- administration advisory domain helpdesk laps local administrator microsoft password solution random password security
- Replies: 0
- Forum: Security Alerts
-
April 2015 Updates
Today, as part of Update Tuesday, we released 11 security bulletins. We encourage customers to apply all of these updates. For more information about this month’s security updates, including the detailed view of the Exploitability Index (XI), visit the Microsoft Bulletin Summary webpage. If you...- News
- Thread
- advisory april 2015 bulletins event exploitability guidance information microsoft msrc news patch release response security software system tech threats updates vulnerability
- Replies: 0
- Forum: Security Alerts
-
3050995 - Improperly Issued Digital Certificates Could Allow Spoofing - Version: 1.0
Revision Note: V1.0 (March 24, 2015): Advisory published. Summary: Microsoft is aware of improperly issued digital certificates coming from the subordinate CA, MCS Holdings, which could be used in attempts to spoof content, perform phishing attacks, or perform man-in-the-middle attacks. The...- News
- Thread
- advisory digital certificates man-in-the-middle microsoft phishing security spoofing vulnerability windows updates
- Replies: 0
- Forum: Security Alerts
-
3046310 - Improperly Issued Digital Certificates Could Allow Spoofing - Version: 1.0
Revision Note: V1.0 (March 16, 2015): Advisory published. Summary: Microsoft is aware of an improperly issued SSL certificate for the domain “live.fi” that could be used in attempts to spoof content, perform phishing attacks, or perform man-in-the-middle attacks. This issue affects all supported...- News
- Thread
- advisory cybersecurity digital certificates man-in-the-middle microsoft phishing revision note spoofing ssl updates vulnerability windows security
- Replies: 0
- Forum: Security Alerts
-
3046310 - Improperly Issued Digital Certificates Could Allow Spoofing - Version: 1.0
Revision Note: V1.0 (March 16, 2015): Advisory published. Summary: Microsoft is aware of an improperly issued SSL certificate for the domain “live.fi” that could be used in attempts to spoof content, perform phishing attacks, or perform man-in-the-middle attacks. This issue affects all supported...- News
- Thread
- advisory cybersecurity digital certificates man-in-the-middle microsoft phishing spoofing ssl certificate vulnerability windows security
- Replies: 0
- Forum: Security Alerts
-
3033929 - Availability of SHA-2 Code Signing Support for Windows 7 and Windows Server 2008...
Revision Note: V1.0 (March 10, 2015): Advisory published. Summary: Microsoft is announcing the reissuance of an update for all supported editions of Windows 7 and Windows Server 2008 R2 to add support for SHA-2 signing and verification functionality. This update supersedes the 2949927 update...- News
- Thread
- advisory code signing functionality revision security sha-2 update verification windows 7 windows server 2008
- Replies: 0
- Forum: Security Alerts
-
Security Advisory 3046015 released
Today, we released Link Removed to provide guidance to customers in response to the SSL/TLS issue referred to by researchers as “FREAK” (Factoring attack on RSA-EXPORT Keys). Our investigation continues and we’ll take the necessary steps to protect our customers. MSRC Team Continue reading...- News
- Thread
- advisory freak msrc protection research rsa security ssl tls vulnerability
- Replies: 0
- Forum: Security Alerts
-
3046015 - Vulnerability in Schannel Could Allow Security Feature Bypass - Version: 1.1
Severity Rating: Important Revision Note: V1.1 (March 5, 2015): Advisory revised to clarify the reason why no workaround exists for systems running Windows Server 2003. See the Advisory FAQ for more information. Summary: Microsoft is aware of a security feature bypass vulnerability in Secure...- News
- Thread
- advisory attacks best practices cipher downgrade freak important microsoft mitm schannel security server ssl tls vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
Microsoft security advisory: Update to improve Windows command-line auditing: February 10, 2015
Link Removed- News
- Thread
- 2015 advisory auditing command-line microsoft security update windows
- Replies: 0
- Forum: Knowledge Base (KB)
-
February 2015 Updates
Today, as part of Update Tuesday, we released nine security bulletins – three rated Critical and six rated Important in severity, to address 56 unique Common Vulnerabilities and Exposures (CVEs) in Microsoft Windows, Microsoft Office, Internet Explorer, and Microsoft Server software. We...- News
- Thread
- advisory bulletins change critical cve exploitability index february 2015 important internet explorer microsoft office microsoft server microsoft windows msrc re-released remote code execution response center security ssl updates vulnerabilities
- Replies: 0
- Forum: Security Alerts
-
A Call for Better Coordinated Vulnerability Disclosure
For years our customers have been in the trenches against cyberattacks in an increasingly complex digital landscape. We’ve been there with you, as have others. And we aren’t going anywhere. Forces often seek to undermine and disrupt technology and people, attempting to weaken the very devices...- News
- Thread
- advisory bestpractices collaboration complexity consumers coordinated cvd cybersecurity disclosure google microsoft patch phishing protection research security software threat trustworthiness vulnerability
- Replies: 0
- Forum: Security Alerts
-
Security Advisory 3010060 released
Today, we released Security Advisory 3010060 to provide additional protections regarding limited, targeted attacks directed at Microsoft Windows customers. A cyberattacker could cause remote code execution if someone is tricked into opening a maliciously-crafted PowerPoint document that contains...- News
- Thread
- advisory anti-virus computer security cyberattack emet firewall fix it guidance malware microsoft office ole powerpoint protection remote code execution security spyware suggested actions threat landscape updates windows
- Replies: 0
- Forum: Security Alerts
-
3010060 - Vulnerability in Microsoft OLE Could Allow Remote Code Execution - Version: 1.0
Revision Note: V1.0 (October 21, 2014): Advisory published. Summary: Microsoft is aware of a vulnerability affecting all supported releases of Microsoft Windows, excluding Windows Server 2003. The vulnerability could allow remote code execution if a user opens a specially crafted Microsoft...- News
- Thread
- advisory execution microsoft october 2014 ole remote code security user rights vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
Windows 7 Microsoft Security update advisory notice
Microsoft have withdrawn a recently released security patch for Windows 7 due to issues: Ref: https://technet.microsoft.com/en-us/library/security/2949927- kemical
- Thread
- advisory bugs investigation microsoft patch security support uninstall update windows 7
- Replies: 1
- Forum: Windows Upgrade and Installation
-
2949927 - Availability of SHA-2 Hashing Algorithm for Windows 7 and Windows Server 2008 R2 -...
Revision Note: V1.0 (October 14, 2014): Advisory published. Summary: Microsoft is announcing the availability of an update for all supported editions of Windows 7 and Windows Server 2008 R2 to add support for SHA-2 signing and verification functionality. Windows 8, Windows 8.1, Windows Server...- News
- Thread
- advisory functionality hashing security sha-2 signing update verification windows 7 windows server
- Replies: 0
- Forum: Security Alerts
-
Security Advisory 3009008 released
Today, we released Link Removed to address a vulnerability in Secure Sockets Layer (SSL) 3.0 which could allow information disclosure. This is an industry-wide vulnerability that affects the protocol itself, and is not specific to Microsoft’s implementation of SSL or the Windows operating...- News
- Thread
- advisory browser connection disclosure encryption information protocol security ssl vulnerability
- Replies: 0
- Forum: Security Alerts
-
Update for Internet Explorer Flash Player for Windows 8.1 for x64-based Systems (KB2987114)
This update addresses the vulnerability discussed in Microsoft Security Advisory (KB2987114). To find out if other security updates are available for you, see the Additional Information section at the bottom of this page. Link Removed- News
- Thread
- advisory flash player internet explorer microsoft security update vulnerability windows 8.1
- Replies: 0
- Forum: Live RSS Feeds
-
Update for Internet Explorer Flash Player for Windows 8 (KB2987114)
This update addresses the vulnerability discussed in Microsoft Security Advisory (KB2987114).To find out if other security updates are available for you, see the Additional Information section at the bottom of this page. Link Removed- News
- Thread
- additional information advisory flash player internet explorer kb2987114 microsoft security update vulnerability windows 8
- Replies: 0
- Forum: Live RSS Feeds
-
Microsoft Security Advisory: Update to improve credentials protection and management for...
Continue reading...- News
- Thread
- advisory credentials management microsoft protection security update
- Replies: 0
- Forum: Knowledge Base (KB)