disclosure

  1. MS10-070: Description of the security update for the Microsoft .NET Framework 3.5.1 in Windows 7 Ser

    Resolves a vulnerability in ASP.NET that could allow information disclosure. An attacker that successfully exploited this vulnerability could read data, such as the view state, which was encrypted by the server. Link Removed
    • News
    • Thread
    • asp.net data disclosure encryption exploitation framework information microsoft security update vulnerability windows 7
    • Replies: 0
    • Forum: Knowledge Base (KB)

  2. MS10-070: Description of the security update for the Microsoft .NET Framework 4 on Windows XP, Windo

    Resolves a vulnerability in ASP.NET that could allow information disclosure. An attacker that successfully exploited this vulnerability could read data, such as the view state, which was encrypted by the server. More...
    • News
    • Thread
    • asp.net data disclosure encryption framework information microsoft security update vulnerability windows xp
    • Replies: 0
    • Forum: Knowledge Base (KB)

  3. MAPP Update: Taking Action to Decrease Risk of Information Disclosure

    During our investigation into the disclosure of confidential data shared with our Microsoft Active Protections Program (MAPP) partners, we determined that a member of the MAPP program, Hangzhou DPTech Technologies Co., Ltd., had breached our non-disclosure agreement (NDA). Microsoft takes...
    • News
    • Thread
    • active breach compliance computing confidential controls disclosure enhancements information investigation mapp microsoft nda partners protection report risk security trustworthy update
    • Replies: 0
    • Forum: Security Alerts

  4. MS11-100: Description of the security update for the .NET Framework 4 on Windows XP, Windows Server

    Resolves a vulnerability in ASP.NET that could allow information disclosure. An attacker that successfully exploited this vulnerability could read data, such as the view state, which was encrypted by the server. More...
    • News
    • Thread
    • .net framework asp.net disclosure security update vulnerability windows server windows xp
    • Replies: 0
    • Forum: Knowledge Base (KB)

  5. MS11-087 - Critical : Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution

    Severity Rating: Critical Revision Note: V1.0 (December 13, 2011): Bulletin published. Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted...
    • News
    • Thread
    • 2011 bulletin critical december disclosure drivers execution font files kernel-mode malicious microsoft patch remote code revision security truetype update vulnerability web page windows
    • Replies: 0
    • Forum: Security Alerts

  6. Microsoft Security Advisory (2416728): Vulnerability in ASP.NET Could Allow Information Disclosure -

    Revision Note: V2.0 (September 28, 2010): Advisory updated to reflect publication of security bulletin Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-070 to address this issue. For more information about this issue...
    • News
    • Thread
    • advisory asp.net bulletin complaints cve-2010-3332 disclosure information investigation issue microsoft ms10-070 oracle padding public report revision note security security update september 2010 update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  7. MS08-069: Description of the security update for XML Core Services 4.0: November 11, 2008

    Resolves a security vulnerability that exists in Microsoft XML Core Services that could enable information disclosure. More...
    • News
    • Thread
    • core services disclosure kb954430 microsoft november 2008 security update vulnerability xml
    • Replies: 0
    • Forum: Knowledge Base (KB)

  8. Microsoft Security Advisory: Vulnerability in SSL/TLS could allow information disclosure

    Provides a link to Microsoft Security Advisory (2588513): Vulnerability in SSL/TLS could allow information disclosure. More...
    • News
    • Thread
    • advisory disclosure information microsoft networking security ssl tls update vulnerability
    • Replies: 0
    • Forum: Knowledge Base (KB)

  9. Microsoft Security Advisory (2416728): Vulnerability in ASP.NET Could Allow Information Disclosure -

    Revision Note: V2.0 (September 28, 2010): Advisory updated to reflect publication of security bulletin Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-070 to address this issue. For more information about this issue...
    • News
    • Thread
    • advisory asp.net cve-2010-3332 disclosure information microsoft ms10-070 security update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  10. Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure - V

    Revision Note: V2.0 (April 12, 2011): Advisory updated to reflect publication of security bulletin. Summary: Microsoft has completed the investigation into public reports of this vulnerability. We have issued MS11-026 to address this issue. For more information about this issue...
    • News
    • Thread
    • advisory bulletin cve-2011-0096 disclosure information mhtml microsoft security update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  11. Microsoft Security Advisory: Vulnerability in MHTML could allow information disclosure

    Provides a link to Microsoft Security Advisory (2501696): Vulnerability in MHTML could allow information disclosure. More...
    • News
    • Thread
    • 2501696 advisory disclosure information mhtml microsoft security vulnerability
    • Replies: 0
    • Forum: Knowledge Base (KB)

  12. MSRC Progress Report Shows Continued Progress of MSRC Key Initiatives

    Today, the MSRC released its Link Removed due to 404 Errort highlighting advancements of key Microsoft programs designed to help prevent and defend against online threats. The Microsoft programs featured in this paper include the following: The Link Removed due to 404 Error (MAPP) and Link...
    • News
    • Thread
    • adobe collaboration conferences customers disclosure exploitability feedback index industry initiatives mapp msrc msvr progress protection report security software updates vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  13. Windows 7 Trend Micro Control Manager file disclosure vulnerability

    Link Removed - Invalid URL
    • JMH
    • Thread
    • cybersecurity disclosure exploitation information malware management security trend micro vulnerability
    • Replies: 0
    • Forum: Windows Security

  14. MS11-049 - Important: Vulnerability in the Microsoft XML Editor Could Allow Information Disclosure (

    Severity Rating: Important - Revision Note: V1.0 (June 14, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft XML Editor. The vulnerability could allow information disclosure if a user opened a specially crafted Web Service Discovery...
    • News
    • Thread
    • bulletin disclosure information microsoft security software update vulnerability web service xml
    • Replies: 0
    • Forum: Security Alerts

  15. Coordinated Vulnerability Disclosure: From Philosophy to Practice

    Last summer at the Black Hat security conference, we announced a philosophical shift in how we refer to vulnerability disclosure, called "Coordinated Vulnerability Disclosure" (CVD). Our intent was to focus on how coordination and collaboration are required to resolve security issues in a way...
    • News
    • Thread
    • attacks collaboration community computing coordination cvd development disclosure ecosystem feedback management microsoft msvr policies protocol research risk security trustworthy vulnerability
    • Replies: 0
    • Forum: Security Alerts

  16. Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure - 4

    Revision Note: V2.0 (April 12, 2011): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into public reports of this vulnerability. We have issued MS11-026 to address this issue. For more information about this issue...
    • News
    • Thread
    • advisory cve-2011-0096 disclosure information mhtml microsoft ms11-026 security update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  17. Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure - 3

    Revision Note: V1.1 (March 11, 2011): Revised Executive Summary to reflect investigation of limited, targeted attacks. Advisory Summary:Microsoft has completed the investigation into public reports of this vulnerability. We have issued MS11-026 to address this issue. For more information about...
    • News
    • Thread
    • advisory attacks cve-2011-0096 disclosure executive information investigation limited mhtml microsoft mime ms11-026 public reports revision security summary targeted update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  18. MS11-023 - Important: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489293

    Bulletin Severity Rating:Important - This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Office file or if a user opens a...
    • News
    • Thread
    • administrative code crafted disclosure execution exploit files important microsoft network office patch protection remote security severity threat update user rights vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  19. MS11-009 - Important: Vulnerability in JScript and VBScript Scripting Engines Could Allow Informatio

    Severity Rating: Important - Revision Note: V1.0 (February 8, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in the JScript and VBScript scripting engines. The vulnerability could allow information disclosure if a user visited a specially...
    • News
    • Thread
    • disclosure information internet jscript ms11-009 security update vbscript vulnerability web
    • Replies: 0
    • Forum: Security Alerts

  20. MS11-009 - Important: Vulnerability in JScript and VBScript Scripting Engines Could Allow Informatio

    Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in the JScript and VBScript scripting engines. The vulnerability could allow information disclosure if a user visited a specially crafted Web site. An attacker would have no way to force users...
    • News
    • Thread
    • attacker disclosure information jscript rapidly security update vbscript vulnerability websites
    • Replies: 0
    • Forum: Security Alerts