cve

  1. Certificate Trust List update and the June 2012 bulletins

    For Update Tuesday we’re releasing seven security bulletins – three Critical-class and four Important – addressing 26 unique CVEs to further improve the security postures of Microsoft Windows, Internet Explorer, Dynamics AX, Microsoft Lync, and the Microsoft .NET Framework. In...
  2. MS11-093 - Important : Vulnerability in OLE Could Allow Remote Code Execution (2624667) - Version: 1

    Severity Rating: Important Revision Note: V1.0 (December 13, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in all supported editions of Windows XP and Windows Server 2003. This security update is rated Important for all...
  3. Windows XP and Office 2003 countdown to end of support, and the April 2012 bulletins

    Hello, As you know, today is Update Tuesday. Before I go into the bulletin details, however, I wanted to let you know that today we’re notifying customers that Windows XP and Office 2003 will go out of support in April 2014. We understand that preparing to deploy the latest versions of...
  4. December 2011 Out-Of-Band Security Bulletin Webcast Q&A

    Hosts: Jonathan Ness, Security Development Manager, MSRC Pete Voss, Sr. Response Communications Manager, Trustworthy Computing Website: TechNet/Security Chat Topic: December 2011 Out-Of-Band Security Bulletin Release Date...
  5. December 2011 Security Bulletin Webcast Q&A

    Hosts: Jonathan Ness, Security Development Manager, MSRC Jerry Bryant, Group Manager, Trustworthy Computing Communications Website: TechNet/Security Chat Topic: December 2011 Security Bulletin Release Date: Wednesday, December 14...
  6. Microsoft hosts BlueHatv11, releases four bulletins

    Hello, On this November Update Tuesday, we’re recapping the Link Removed, which Microsoft hosted in Redmond last week. We are also releasing four security updates, so please read on for details. Microsoft hosted its Link Removed of the BlueHat conference Nov. 2-4. The event featured...
  7. Advance Notification for November 2011

    Hello, As we do each month, we're providing advance notification on the release of four security bulletins, one Critical, two Important, and one Moderate, to address four CVEs in Windows. As usual, the bulletin release is scheduled for the second Tuesday of the month, Nov. 8, at approximately 10...
  8. October Update Tuesday: Security Intelligence Report volume 11 announced

    Hello, On this October Update Tuesday, we are releasing the 11th volume of the Security Intelligence Report, Link Removed which puts zero-day vulnerabilities into context against other global threats. We are also releasing eight security updates so please read on for details. A new method of...
  9. MS08-069: Vulnerabilities in Microsoft XML Core Services could allow remote code execution

    Resolves a security vulnerability that exists in Microsoft XML Core Services that could enable information disclosure. More...
  10. Microsoft Security Advisory (945713): Vulnerability in Web Proxy Auto-Discovery (WPAD) Could Allow I

    Revision Note: V2.0 (June 9, 2009): Advisory updated to reflect publication of security bulletin MS09-008 and Microsoft Security Advisory 971888. Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS09-008 to address the WPAD...
  11. Microsoft Security Advisory (975191): Vulnerabilities in the FTP Service in Internet Information Ser

    Revision Note: V3.0 (October 13, 2009): Advisory updated to reflect publication of security bulletin. Summary: Microsoft has completed the investigation into a public report of this issue. We have released MS09-053 to address this issue. For more information about this issue, including...
  12. MS11-044 - Critical: Vulnerability in .NET Framework Could Allow Remote Code Execution (2538814) - V

    Severity Rating: Critical - Revision Note: V1.0 (June 14, 2011): Bulletin published.Summary: This security update resolves a publicly disclosed vulnerability in Microsoft .NET Framework. The vulnerability could allow remote code execution on a client system if a user views a specially crafted...
  13. MS11-045 - Important: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2537146)

    Severity Rating: Important - Revision Note: V1.0 (June 14, 2011): Bulletin published.Summary: This security update resolves eight privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Excel file. An...
  14. Exploitability Index Improvements Now Offer Additional Guidance

    Exploitability Index Improvements Now Offer Additional Guidance In October of 2008, Microsoft published its first Link Removed a rating system that helps customers identify the likelihood that a specific vulnerability would be exploited within the first 30 days after bulletin release. As of...
  15. MS11-021 - Important: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279)

    Bulletin Severity Rating:Important - This security update resolves nine privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited any of these...
  16. MS11-022 - Important: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (248

    Bulletin Severity Rating:Important - This security update resolves three privately reported vulnerabilities in Microsoft PowerPoint. The vulnerabilities could allow remote code execution if a user opens a specially crafted PowerPoint file. An attacker who successfully exploited any of these...
  17. TA10-348A: Microsoft Updates for Multiple Vulnerabilities

    Microsoft Updates for Multiple Vulnerabilities Syndicated from the United States Security Readiness Team (US-CERT). Link Removed - Invalid URL
  18. MS10-075 - Critical: Vulnerability in Media Player Network Sharing Service Could Allow Remote Code E

    Severity Rating: Critical - Revision Note: V1.0 (October 12, 2010): Bulletin published.Summary: This security update resolves a privately reported vulnerability in the Microsoft Windows Media Player Network Sharing Service. The vulnerability could allow remote code execution if an attacker sent...
  19. August 2010 Bulletin Release Advance Notification

    Hello; I'm Angela Gunn and I'm new to the Response Communications team. Today we're releasing our Link Removed due to 404 Error for the August security bulletin release, which is scheduled for Tuesday, August 10. This month's release is composed of 14 bulletins addressing 34 vulnerabilities in...
  20. MS10-065 - Important: Vulnerabilities in Microsoft Internet Information Services (IIS) Could Allow R

    Severity Rating: Important - Revision Note: V1.0 (September 14, 2010): Bulletin published.Summary: This security update resolves two privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Information Services (IIS). The most severe of these vulnerabilities could...