bulletins

  1. MS15-096 - Important: Vulnerability in Active Directory Service Could Allow Denial of...

    Severity Rating: Important Revision Note: V1.0 (September 8, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Active Directory. The vulnerability could allow denial of service if an authenticated attacker creates multiple machine accounts. To exploit the...
  2. June 2015 Updates

    Today, as part of Update Tuesday, we released 8 security bulletins. We encourage customers to apply all of these updates. For more information about this month’s security updates, including the detailed view of the Exploitability Index (XI), visit the Microsoft Bulletin Summary webpage. If you...
  3. May 2015 Updates

    Today, as part of Update Tuesday, we released 13 security bulletins. We encourage customers to apply all of these updates. For more information about this month’s security updates, including a detailed view of the Exploitability Index (XI), visit the Microsoft Bulletin Summary webpage. If you...
  4. April 2015 Updates

    Today, as part of Update Tuesday, we released 11 security bulletins. We encourage customers to apply all of these updates. For more information about this month’s security updates, including the detailed view of the Exploitability Index (XI), visit the Microsoft Bulletin Summary webpage. If you...
  5. March 2015 Updates

    Today, as part of Update Tuesday, we released 14 security bulletins to address vulnerabilities in Microsoft Windows, Microsoft Office, Microsoft Exchange, and Internet Explorer. We encourage customers to apply all of these updates. For more information about this month’s security updates...
  6. February 2015 Updates

    Today, as part of Update Tuesday, we released nine security bulletins – three rated Critical and six rated Important in severity, to address 56 unique Common Vulnerabilities and Exposures (CVEs) in Microsoft Windows, Microsoft Office, Internet Explorer, and Microsoft Server software. We...
  7. The March 2014 Security Updates

    This month we release five bulletins to address 23 unique CVEs in Microsoft Windows, Internet Explorer and Silverlight. If you need to prioritize, the update for Internet Explorer addresses the issue first described in Security Advisory 2934088, so it should be at the top of your list. While...
  8. 10 years of Update Tuesdays

    On October 1, 2003, Microsoft announced it would move to a monthly security bulletin cadence. Today, marks 10 years since that first monthly security update. We looked at many ways to improve our security preparedness and patch timing was the number one customer request. Your feedback was clear...
  9. The October 2013 security updates

    This month we release eight bulletins – four Critical and four Important - which address 26 unique CVEs in Microsoft Windows, Internet Explorer, SharePoint, .NET Framework, Office, and Silverlight. For those who need to prioritize their deployment planning, we recommend focusing on MS13-080...
  10. Microsoft Security Advisory (2639658): Vulnerability in TrueType Font Parsing Could Allow...

    Revision Note: V2.0 (December 13, 2011): Advisory updated to reflect publication of security bulletins. Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS11-087 to address this issue. For more information about this issue, including...
  11. Advance Notification for July 2013 - Version: 1.0

    Revision Note: Advance Notification published. Summary: This is an advance notification of security bulletins that Microsoft is intending to release on July 9, 2013. More...
  12. Advanced Notification Service for the June 2013 Security Bulletin Release

    Today we’re providing Advance Notification of five bulletins for release on Tuesday, June 11, 2013. This release brings one Critical- and four Important-class bulletins. The Critical-rated bulletin addresses issues in Internet Explorer, and the Important-rated bulletins address issues in...
  13. Advance Notification for June 2013 - Version: 1.0

    Revision Note: Advance Notification published. Summary: This is an advance notification of security bulletins that Microsoft is intending to release on June 11, 2013. More...
  14. Microsoft Customer Protections for May 2013

    Today, we are releasing 10 bulletins, addressing 33 vulnerabilities in Microsoft products. Before we get into the details, we wanted to first let our enterprise customers know about a change in how we’re communicating technical details within our security advisories. Starting today...
  15. Advance Notification for April 2013 - Version: 1.0

    Revision Note: Advance Notification published. Summary: This is an advance notification of security bulletins that Microsoft is intending to release on April 9, 2013. More...
  16. Advance Notification for April 2013 - Version: 1.0

    Revision Note: Advance Notification published. Summary: This is an advance notification of security bulletins that Microsoft is intending to release on April 9, 2013. More...
  17. Advance Notification for March 2013 - Version: 1.0

    Revision Note: Advance Notification published. Summary: This is an advance notification of security bulletins that Microsoft is intending to release on March 12, 2013. More...
  18. Baseball, Bulletins and the February 2013 Release

    Before we discuss this month’s release, I wanted to briefly touch on the big event happening this week. No, I’m not talking about the romantically-themed holiday on Thursday. I’m talking about the start of spring training and the return of baseball. There are a few things I am...
  19. Advance Notification Service for the February 2013 Security Bulletin Release

    We’re kicking off the February 2013 Security Bulletin Release with Advance Notification of 12 bulletins for release Tuesday, February 12. This release brings five Critical and seven Important-class bulletins, which address 57 unique vulnerabilities. The Critical-rated bulletins address...
  20. Advance Notification for January 2013 - Version: 1.0

    Revision Note: Advance Notification published. Summary: This is an advance notification of security bulletins that Microsoft is intending to release on January 8, 2013. More...