-
Microsoft security advisory: Improperly issued digital certificates could allow spoofing
Link Removed- News
- Thread
- advisory digital certificates microsoft security spoofing
- Replies: 0
- Forum: Knowledge Base (KB)
-
Microsoft releases Security Advisory 2974294
Today, we released Security Advisory 2974294 to inform global customers about an update for the Microsoft Malware Protection Engine. This update addresses a privately disclosed issue and fixes a vulnerability that could allow a denial of service if the Microsoft Malware Protection Engine scans a...- News
- Thread
- advisory cvd denial of service engine malware microsoft protection security update vulnerability
- Replies: 0
- Forum: Security Alerts
-
Advance Notification Service for the June 2014 Security Bulletin Release
Today we provide advance notification for the release of seven Bulletins, two rated Critical and five rated Important in severity. These Updates are for Microsoft Word, Microsoft Office and Internet Explorer. The Update for Internet Explorer addresses Link Removed, which we have not seen used in...- News
- Thread
- advisory bulletin configuration credentials deployment internet explorer microsoft office pdt risk assessment security server 2008 server 2012 timeline update windows 7 windows 8 word
- Replies: 0
- Forum: Security Alerts
-
Update for Disabling RC4 in .NET TLS - Version: 1.0
Revision Note: V1.0 (May 13, 2014): Advisory published. Summary: Microsoft is announcing the availability of an update for Microsoft .NET Framework that disables RC4 in Transport Layer Security (TLS) through the modification of the system registry. Use of RC4 in TLS could allow an attacker to...- News
- Thread
- advisory encryption man-in-the-middle microsoft net framework plain text rc4 registry security tls update
- Replies: 0
- Forum: Security Alerts
-
Update Rollup of Revoked Non-Compliant UEFI Modules - Version: 1.0
Revision Note: V1.0 (May 13, 2014): Advisory published. Summary: With this advisory, Microsoft is revoking the digital signature for four private, third-party UEFI (Unified Extensible Firmware Interface) modules that could be loaded during UEFI Secure Boot. Continue reading...- News
- Thread
- advisory digital signature firmware microsoft module rollup secure boot third party uefi update
- Replies: 0
- Forum: Security Alerts
-
Out-of-Band Release to Address Microsoft Security Advisory 2963983
At approximately 10 a.m. PDT, we will release an out-of-band security update to address the issue affecting Internet Explorer (IE) that was first discussed in Security Advisory 2963983. This update is fully tested and ready for release for all affected versions of the browser. The majority of...- News
- Thread
- advisory automatic updates guidance ie11 internet explorer malware microsoft migration patch response communications security security bulletin support technical update upgrade webcast windows 7 windows 8.1 windows xp
- Replies: 0
- Forum: Security Alerts
-
Microsoft Security Advisory (2755801): Update for Vulnerabilities in Adobe Flash Player in...
Severity Rating: Revision Note: V22.0 (April 8, 2014): Added the 2942844 update to the Current Update section. Summary: Microsoft is announcing the availability of an update for Adobe Flash Player in Internet Explorer on all supported editions of Windows 8, Windows Server 2012, Windows RT...- News
- Thread
- adobe advisory extended security updates flash player internet explorer libraries microsoft patch revision note security software tech news update vulnerability windows 8 windows 8.1 windows rt windows server windows server 2012 r2
- Replies: 0
- Forum: Security Alerts
-
Vulnerability in DirectAccess and IPsec Could Allow Security Feature Bypass - Version: 1.1
Severity Rating: Revision Note: V1.1 (February 28, 2014): Advisory revised to announce a detection change in the 2862152 update for Windows 8.1 for 32-bit Systems, Windows 8.1 for x64-based Systems, Windows Server 2012 R2, and Windows RT 8.1. This is a detection change only. There were no...- News
- Thread
- advisory authentication detection directaccess ipsec security update vulnerability windows 8.1 windows server
- Replies: 0
- Forum: Security Alerts
-
Update to Revoke Non-compliant UEFI Modules - Version: 2.0
Severity Rating: Revision Note: V2.0 (February 27, 2014): Revised advisory to rerelease update 2871690. The rereleased update addresses an issue where specific third-party BIOS versions did not properly validate the signature of the original update. Customers who have already successfully...- News
- Thread
- advisory digital signature firmware microsoft non-compliant secure boot uefi update windows 8 windows server
- Replies: 0
- Forum: Security Alerts
-
Vulnerability in Microsoft Graphics Component Could Allow Remote Code Execution - Version: 2.0
Severity Rating: Revision Note: V2.0 (December 10, 2013): Advisory updated to reflect publication of security bulletin. Summary: Microsoft has completed the investigation into a private report of this vulnerability. We have issued MS13-096 to address the Microsoft Graphics Component Memory...- News
- Thread
- advisory bulletin cve-2013-3893 december execution extended security updates graphics investigation memory issues microsoft ms13-096 remote code execution report revision note security technical update vulnerability
- Replies: 0
- Forum: Security Alerts
-
Update for Disabling RC4 - Version: 1.0
Severity Rating: Revision Note: V1.0 (November 12, 2013): Advisory published. Summary: Microsoft is announcing the availability of an update for supported editions of Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, and Windows RT to address known weaknesses in RC4. The update...- News
- Thread
- advisory application cipher crypto cryptography developers november 2013 patch rc4 registry schannel security system update version 1.0 vulnerability weakness windows 7 windows 8 windows server
- Replies: 0
- Forum: Security Alerts
-
Update For Minimum Certificate Key Length - Version: 2.0
Severity Rating: Revision Note: V2.0 (October 9, 2012): Revised advisory to rerelease the KB2661254 update for Windows XP and to announce that the KB2661254 update for all supported releases of Microsoft Windows is now offered through automatic updating. Customers who previously applied the...- News
- Thread
- advisory attack automatic updates certificate kb2661254 key length microsoft phishing rsa keys security update virtualization windows xp
- Replies: 0
- Forum: Security Alerts
-
Update Rollup for ActiveX Kill Bits - Version: 1.0
Severity Rating: Revision Note: V1.0 (May 8, 2012): Advisory published. Summary: Microsoft is releasing a new set of ActiveX kill bits with this advisory. Continue reading...- News
- Thread
- activex advisory kill bits microsoft revision security technet update version 1.0
- Replies: 0
- Forum: Security Alerts
-
Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution - Version: 2.0
Severity Rating: Revision Note: V2.0 (July 10, 2012): Advisory updated to reflect publication of security bulletin. Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS12-043 to address this issue. For more information about this...- News
- Thread
- advisory cve-2012-1889 memory issues microsoft msxml remote code execution security update vulnerability xml
- Replies: 0
- Forum: Security Alerts
-
Vulnerability in TrueType Font Parsing Could Allow Elevation of Privilege - Version: 2.0
Severity Rating: Revision Note: V2.0 (December 13, 2011): Advisory updated to reflect publication of security bulletins. Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS11-087 to address this issue. For more information about this...- News
- Thread
- advisory bulletin cve-2011-3402 elevation fonts information investigation microsoft october patch privilege public revision security software truetype update vulnerability
- Replies: 0
- Forum: Security Alerts
-
Microsoft Security Advisory (2905247): Insecure ASP.NET Site Configuration Could Allow...
Severity Rating: Revision Note: V1.0 (December, 10, 2013): Advisory published. Summary: Microsoft is announcing the availability of an update for Microsoft ASP.NET to address a vulnerability in ASP.NET view state that exists when Machine Authentication Code (MAC) validation is disabled through...- News
- Thread
- advisory asp.net configuration elevation framework microsoft privilege security update vulnerability
- Replies: 0
- Forum: Security Alerts
-
Microsoft Releases Security Advisory 2953095
Today we released Security Advisory 2953095 to notify customers of a vulnerability in Microsoft Word. At this time, we are aware of limited, targeted attacks directed at Microsoft Word 2010. An attacker could cause remote code execution if someone was convinced to open a specially crafted Rich...- News
- Thread
- advisory antivirus caution email emet execution firewall fix guidance microsoft outlook protection remote code execution rtf security software threat analysis update vulnerability word
- Replies: 0
- Forum: Security Alerts
-
Advance Notification Service for the March 2014 Security Bulletin Release
Today we provide advance notification for the release of five bulletins for March 2014, two rated Critical and thee rated Important in severity. These updates address issues in Microsoft Windows, Internet Explorer and Silverlight. The update provided in MS14-012 fully addresses the issue first...- News
- Thread
- advisory bulletin critical deployment impact important internet explorer march 2014 msrc risk security silverlight testing trustworthy computing update windows
- Replies: 0
- Forum: Security Alerts
-
Microsoft Releases Security Advisory 2934088
Today, we released Security Advisory 2934088 regarding an issue that impacts Internet Explorer 9 and 10. Internet Explorer 6, 7, 8 and 11 are not affected. At this time, we are only aware of limited, targeted attacks against Internet Explorer 10. This issue allows remote code execution if users...- News
- Thread
- advisory antivirus firewall fix internet explorer malicious links microsoft remote code execution safe browsing security system protection tech insights threat analysis update vulnerability
- Replies: 0
- Forum: Security Alerts
-
Microsoft Security Advisory (2719662): Vulnerabilities in Gadgets Could Allow Remote Code...
Revision Note: V1.1 (July 3, 2013): Clarified that disabling Windows Sidebar and Gadgets can help protect customers from potential attacks that leverage Gadgets to execute arbitrary code. This is an informational change only. Summary: Microsoft is announcing the availability of an automated...- News
- Thread
- advisory arbitrary code attack automated fix gadgets informational microsoft protection remote code execution security update vulnerability windows 7 windows vista
- Replies: 0
- Forum: Security Alerts