attack

  1. 3123479 - Deprecation of SHA-1 Hashing Algorithm for Microsoft Root Certificate Program -...

    Revision Note: V1.0 (January 12, 2016): Advisory published. Summary: Microsoft is announcing a policy change to the Microsoft Root Certificate Program. The new policy no longer allows root certificate authorities to issue X.509 certificates using the SHA-1 hashing algorithm for the purposes of...
    • News
    • Thread
    • 2016 advisory attack certificate code signing deprecation digital certificates man-in-the-middle microsoft phishing policy change revision note root certificate security sha1 spoofing ssl technet v1.0 x.509
    • Replies: 0
    • Forum: Security Alerts

  2. MS16-008 - Important: Security Update for Windows Kernel to Address Elevation of Privilege...

    Severity Rating: Important Revision Note: V1.0 (January 12, 2016): Bulletin published. Summary: This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted...
    • News
    • Thread
    • 2016 application attack bulletin crafted elevation important kernel microsoft ms16-008 privilege revision security system update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  3. MS16-002 - Critical: Cumulative Security Update for Microsoft Edge (3124904) - Version: 1.0

    Severity Rating: Critical Revision Note: V1.0 (January 12, 2016): Bulletin published. Summary: This security update resolves vulnerabilities in Microsoft Edge. The vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who...
    • News
    • Thread
    • 2016 administrative attack bulletin critical cumulative execution exploit impact microsoft edge ms16-002 remote code execution revision note security summary update user rights vulnerabilities webpage
    • Replies: 0
    • Forum: Security Alerts

  4. 3123479 - Deprecation of SHA-1 Hashing Algorithm for Microsoft Root Certificate Program -...

    Revision Note: V1.0 (January 12, 2016): Advisory published. Summary: Microsoft is announcing a policy change to the Microsoft Root Certificate Program. The new policy no longer allows root certificate authorities to issue X.509 certificates using the SHA-1 hashing algorithm for the purposes of...
    • News
    • Thread
    • 2016 advisory attack certificate code signing content spoofing deprecation digital certificates hashing man-in-the-middle microsoft phishing policy change revision note root certificate security sha1 ssl x.509
    • Replies: 0
    • Forum: Security Alerts

  5. MS15-121 - Important: Security Update for Schannel to Address Spoofing (3081320) - Version: 1.0

    Severity Rating: Important Revision Note: V1.0 (November 10, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow spoofing if an attacker performs a man-in-the-middle (MiTM) attack between a client and a legitimate...
    • News
    • Thread
    • attack bulletin client cybersecurity important microsoft mitm ms15-121 november 2015 patch revision schannel security server spoofing update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  6. Ending support for the RC4 cipher in Microsoft Edge and Internet Explorer 11

    Today, Microsoft is announcing the end-of-support of the RC4 cipher in Microsoft Edge and Internet Explorer 11. Starting in early 2016, the RC4 cipher will be disabled by-default and will not be used during TLS fallback negotiations. There is consensus across the industry that RC4 is no longer...
    • News
    • Thread
    • attack browser cipher cryptography edge encryption end of support fallback industry consensus internet explorer microsoft rc4 security security advisory support tls user advice windows 10 windows 7 windows 8.1
    • Replies: 0
    • Forum: Live RSS Feeds

  7. MS15-087 - Important: Vulnerability in UDDI Services Could Allow Elevation of Privilege...

    Severity Rating: Important Revision Note: V1.0 (August 11, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker engineered a cross-site scripting (XSS) scenario by inserting a...
    • News
    • Thread
    • 2015 attack cross-site scripting cybersecurity elevation of privilege exploit extended security updates malicious scripts microsoft ms15-087 patch management revision note security bulletin severity rating technet uddi services vulnerability webpage xss
    • Replies: 0
    • Forum: Security Alerts

  8. MS15-089 - Important: Vulnerability in WebDAV Could Allow Information Disclosure (3076949)...

    Severity Rating: Important Revision Note: V1.0 (August 11, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow information disclosure if an attacker forces an encrypted Secure Socket Layer (SSL) 2.0 session with a...
    • News
    • Thread
    • 2015 attack cybersecurity encrypted traffic encryption extended security updates important information disclosure maintenance man-in-the-middle microsoft ms15-089 network security patch revision note ssl 2.0 system update threats vulnerability webdav
    • Replies: 0
    • Forum: Security Alerts

  9. MS15-086 - Important: Vulnerability in System Center Operations Manager Could Allow...

    Severity Rating: Important Revision Note: V1.0 (August 11, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft System Center Operations Manager. The vulnerability could allow elevation of privilege if a user visits an affected website by way of a...
    • News
    • Thread
    • 2015 attack bulletin crafted url elevation email important messenger microsoft operations manager patch privilege risk security system center update url user awareness vulnerability website
    • Replies: 0
    • Forum: Security Alerts

  10. MS15-082 - Important: Vulnerabilities in RDP Could Allow Remote Code Execution (3080348) -...

    Severity Rating: Important Revision Note: V1.0 (August 11, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sends a specially crafted sequence of packets to a targeted system...
    • News
    • Thread
    • attack extended security updates ms15-082 patch rdp remote code execution severity rating tcp/ip vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  11. MS15-076 - Important: Vulnerability in Windows Remote Procedure Call Could Allow Elevation...

    Severity Rating: Important Revision Note: V1.0 (July 14, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability, which exists in Windows Remote Procedure Call (RPC) authentication, could allow elevation of privilege if an...
    • News
    • Thread
    • 2015 attack bulletin control elevation microsoft privilege remote procedure call revision security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  12. MS15-069 - Important: Vulnerabilities in Windows Could Allow Remote Code Execution...

    Severity Rating: Important Revision Note: V1.0 (July 14, 2015): Bulletin published. Summary: This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow Remote Code Execution if an attacker first places a specially crafted dynamic link library (DLL) file...
    • News
    • Thread
    • attack control cybersecurity dll exploitation important malware microsoft ms15-069 patch protection remote code execution revision note rtf security severity rating update user rights vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  13. MS15-076 - Important: Vulnerability in Windows Remote Procedure Call Could Allow Elevation...

    Severity Rating: Important Revision Note: V1.0 (July 14, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability, which exists in Windows Remote Procedure Call (RPC) authentication, could allow elevation of privilege if an...
    • News
    • Thread
    • attack authentication bulletin control data elevation extended security updates important microsoft ms15-076 patch privilege revision risk rpc software system user rights vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  14. MS15-077 - Important: Vulnerability in ATM Font Driver Could Allow Elevation of Privilege...

    Severity Rating: Important Revision Note: V1.0 (July 14, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a target system and runs a specially crafted...
    • News
    • Thread
    • 2015 arbitrary code attack bulletin control cve elevation of privilege extended security updates important microsoft ms15-077 patch programs revision note software system vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  15. MS15-067 - Critical: Vulnerability in RDP Could Allow Remote Code Execution (3073094) -...

    Severity Rating: Critical Revision Note: V1.0 (July 14, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sends a specially crafted sequence of packets to a targeted system...
    • News
    • Thread
    • 2015 attack bulletin critical cybersecurity extended security updates microsoft ms15-067 network patch protocol rdp remote code execution revision note risk system technical vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  16. 3074162 - Vulnerability in Microsoft Malicious Software Removal Tool Could Allow Elevation...

    Severity Rating: Important Revision Note: V1.0 (July 14, 2015): Advisory published Summary: Microsoft is releasing this security advisory to inform customers that an update to the Microsoft Malicious Software Removal Tool (MSRT) is available that addresses a security vulnerability that was...
    • News
    • Thread
    • 2015 admin rights advisory attack cybersecurity dll elevation of privilege exploit malicious software removal tool microsoft msrt privilege revision note risk security technet update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  17. MS15-056 - Critical: Cumulative Security Update for Internet Explorer (3058515) - Version: 1.0

    Severity Rating: Critical Revision Note: V1.0 (June 9, 2015): Bulletin published. Summary: This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet...
    • News
    • Thread
    • 2015 administration attack browser security critical cumulative exploit extended security updates internet explorer microsoft ms15-056 patch remote code execution revision note system technical update user rights vulnerabilities webpage
    • Replies: 0
    • Forum: Security Alerts

  18. MS15-055 - Important: Vulnerability in Schannel Could Allow Information Disclosure...

    Severity Rating: Important Revision Note: V1.0 (May 12, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow information disclosure when Secure Channel (Schannel) allows the use of a weak Diffie-Hellman ephemeral...
    • News
    • Thread
    • attack bit length bulletin configuration dhe diffie-hellman encryption information disclosure key exchange key length microsoft revision note schannel security server severity rating tls update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  19. MS15-049 - Important: Vulnerability in Silverlight Could Allow Elevation of Privilege...

    Severity Rating: Important Revision Note: V1.0 (May 12, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Silverlight. The vulnerability could allow elevation of privilege if a specially crafted Silverlight application is run on an affected system. To...
    • News
    • Thread
    • attack bulletin management microsoft privilege security silverlight system update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  20. MS15-037 - Important: Vulnerability in Windows Task Scheduler Could Allow Elevation of...

    Severity Rating: Important Revision Note: V1.0 (April 14, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. An attacker who successfully exploited the vulnerability could leverage a known invalid task to cause Task Scheduler to run a...
    • News
    • Thread
    • attack elevation extended security updates important microsoft task scheduler user rights vulnerability windows
    • Replies: 0
    • Forum: Security Alerts