Severity Rating: Important
Revision Note: V1.0 (November 12, 2013): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow information disclosure if an attacker logs on to an affected system as a local...
Severity Rating: Important
Revision Note: V1.0 (November 12, 2013): Bulletin published.
Summary: This security update resolves three privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a specially crafted WordPerfect document file is...
Severity Rating: Critical
Revision Note: V1.0 (November 12, 2013): Bulletin published.
Summary: This security update resolves a privately reported vulnerability that is currently being exploited. The vulnerability exists in the InformationCardSigninHelper Class ActiveX control. The vulnerability...
Severity Rating: Important
Revision Note: V1.0 (November 12, 2013): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service when an affected web service processes a specially crafted X.509...
Today, we’re providing advance notification for the release of eight bulletins, three Critical and five Important, for November 2013. The Critical updates address vulnerabilities in Internet Explorer and Microsoft Windows, and the Important updates address issues in Windows and Office.
While...
advisory
bulletin
critical
deployment
gdi+
important
internet explorer
lync
office
office 2003
office 2007
office 2010
risk analysis
security
updates
vulnerabilities
windows
windows server
windows vista
windows xp
On October 1, 2003, Microsoft announced it would move to a monthly security bulletin cadence. Today, marks 10 years since that first monthly security update. We looked at many ways to improve our security preparedness and patch timing was the number one customer request. Your feedback was clear...
Severity Rating: Important
Revision Note: V1.0 (October 8, 2013): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Silverlight. The vulnerability could allow information disclosure if an attacker hosts a website that contains a specially...
Severity Rating: Important
Revision Note: V1.0 (October 8, 2013): Bulletin published.
Summary: This security update resolves two privately reported vulnerabilities in Microsoft Office server software. The most severe vulnerability could allow remote code execution if a user opens a specially...
Severity Rating: Important
Revision Note: V1.0 (October 8, 2013): Bulletin published.
Summary: This security update resolves two privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an...
Severity Rating: Important
Revision Note: V1.0 (October 8, 2013): Bulletin published.
Summary: This security update resolves two privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an...
Severity Rating: Important
Revision Note: V1.0 (September 10, 2013): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker convinces an authenticated user to execute...
Severity Rating: Important
Revision Note: V1.0 (August 13, 2013): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow a denial of service if the attacker sends a specially crafted ICMP packet to the...
Severity Rating: Important
Revision Note: V1.0 (August 13, 2013): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in the Windows NAT Driver in Microsoft Windows. The vulnerability could allow denial of service if an attacker sends a specially crafted...
Severity Rating: Important
Revision Note: V1.0 (May 14, 2013): Bulletin published.
Summary: This security update resolves one privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted file or previews a specially...
bulletin
email security
execution
file handling
important
microsoft
ms13-043
office
patch management
remote code
risk assessment
security
update
user access
user rights
vulnerability
Link Removed, Link Removed
Today we released a new update to replace KB2823324, which was originally made available through MS13-036. As we previously discussed, we stopped distributing this update when we learned some customers were having issues. The new update, KB2840149, still addresses the...
Severity Rating: Critical
Revision Note: V1.3 (July 9, 2013): Bulletin revised to announce a detection change in the Windows Vista packages for the 2685939 update to correct a Windows Update reoffering issue. This is a detection change only. Customers who have already successfully updated their...
Severity Rating: Important
Revision Note: V1.2 (July 9, 2013): Bulletin revised to announce a detection change in the Windows Vista packages for the 2785220 update to correct a Windows Update reoffering issue. This is a detection change only. Customers who have already successfully updated their...
attacker
bulletin
cybersecurity
detection change
encryption
handshakes
important
microsoft
patch
privately reported
reoffering
security
ssl
tls
update
vulnerability
web traffic
windows
windows vista
For August 2010 Patch Tuesday, Microsoft has released a total of 34 security vulnerability fixes, a patch to the Windows kernel, and 14 updates to release issues with Windows, Internet Explorer, .NET Framework (Silverlight), MSXML. It is one of the largest Windows Updates assembled in one...
Major vulnerabilities in Remote Desktop and Windows Update are being patched in one of the largest surface area attacks against Windows in recent history. Install all security updates as soon as possible. 26 CVEs, 3 critical updates, and 7 in total. All are indexed with a critical rating of 1...
Today we’re publishing the Link Removed. During the webcast, we fielded 10 questions covering all updates. All questions are included on the Q&A page.
We invite our customers to join us for the next scheduled webcast on Wednesday, August 14th at 11 a.m. PT (UTC -8), when we will go into...