attacker

Severity Rating: Important Revision Note: V1.0 (January 8, 2013): Bulletin published. Summary: This security update resolves one privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to the system...

Severity Rating: Moderate Revision Note: V1.0 (November 13, 2012): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft Internet Information Services (IIS). The more severe vulnerability could allow information...

Severity Rating: Critical Revision Note: V2.1 (August 15, 2012): Corrected download links for Microsoft Groove Server 2007 and other Microsoft Office software. Added download links and update information for Microsoft Groove 2007. These are informational changes only. Customers who...

Severity Rating: Important Revision Note: V1.0 (August 14, 2012): Bulletin published. Summary: This security update resolves one privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted...

Resolves vulnerabilities in Microsoft Windows that could allow elevation of privilege if an attacker logged on locally and ran a specially crafted application. More...

Severity Rating: Important Revision Note: V1.0 (December 13, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in all supported editions of Windows XP and Windows Server 2003. This security update is rated Important for all...

Resolves vulnerabilities in Microsoft Windows that could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. More...

Resolves vulnerabilities in the Windows kernel-mode drivers. These vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. More...

Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if an attacker created a specially crafted SMB packet and sent the packet to an affected system. More...

Severity Rating: Critical Revision Note: V1.3 (February 1, 2012): Corrected registry keys and installation switches in the deployment tables for Windows Server 2003 and Windows Server 2008, and installation switches in the deployment table for Windows Vista. This is an informational...

Resolves a vulnerability in Windows DNS resolution that could allow remote code execution if an attacker gained access to the network and then created a custom program to send specially crafted LLMNR broadcast queries to the target systems. More...

Resolves vulnerabilities in Microsoft Windows that could allow elevation of privilege if an attacker logs on to a user's system and runs a specially crafted application. More...

Severity Rating: Important Revision Note: V1.0 (February 14, 2012): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to a...

Severity Rating: Critical Revision Note: V1.1 (December 30, 2011): Added entry to the Update FAQ to address security-related changes to functionality contained in this update and added mitigation for CVE-2011-3414 Summary: This security update resolves one publicly...

Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. More...

Severity Rating: Critical Revision Note: V1.1 (April 13, 2011): Clarified the vulnerability description in the Executive Summary. Summary: This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Microsoft Windows. The...

Severity Rating: Important Revision Note: V1.1 (June 15, 2011): Clarified the XSS Filter mitigation. Summary: This security update resolves a privately reported vulnerability in Active Directory Certificate Services Web Enrollment. The vulnerability is a cross-site...

Severity Rating: Critical Revision Note: V1.0 (July 12, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in the Windows Bluetooth Stack. The vulnerability could allow remote code execution if an attacker sent a series of...

Severity Rating: Important - Revision Note: V1.0 (August 9, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a legitimate Excel file (such as a .xlsx file)...

Severity Rating: Important - Revision Note: V1.0 (August 9, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft Report Viewer. The vulnerability could allow information disclosure if a user views a specially crafted Web page. In all...