disclosure

  1. Security Advisory 3009008 released

    Today, we released Link Removed to address a vulnerability in Secure Sockets Layer (SSL) 3.0 which could allow information disclosure. This is an industry-wide vulnerability that affects the protocol itself, and is not specific to Microsoft’s implementation of SSL or the Windows operating...
    • News
    • Thread
    • advisory browser connection disclosure encryption information protocol security ssl vulnerability
    • Replies: 0
    • Forum: Security Alerts

  2. VIDEO The Starchild Skull: Disclosure's Smoking Gun - Lloyd Pye (full video)

    :shocked: :zoned:
    • whoosh
    • Thread
    • anomalies disclosure documentary evidence lloyd pye mystery research skull starchild video
    • Replies: 1
    • Forum: The Water Cooler

  3. MS14-033: Vulnerability in Microsoft XML core services could allow information disclosure:...

    Link Removed
    • News
    • Thread
    • core disclosure information microsoft ms14 patch security update vulnerability xml
    • Replies: 0
    • Forum: Knowledge Base (KB)

  4. MS13-048 - Important : Vulnerability in Windows Kernel Could Allow Information Disclosure (2839229)

    Severity Rating: Important Revision Note: V1.1 (June 12, 2013): Updated the Known Issues entry in the Knowledge Base Article section from "None" to "Yes". Summary: This security update resolves one privately reported vulnerability in Windows Kernel. The vulnerability could...
    • News
    • Thread
    • credentials disclosure exploitation information kernel patch security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  5. MS13-035 - Important : Vulnerability in HTML Sanitization Component Could Allow Elevation of Privile

    Severity Rating: Important Revision Note: V1.0 (April 9, 2013): Bulletin published. Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Office. The vulnerability could allow elevation of privilege if an attacker sends specially crafted...
    • News
    • Thread
    • attack bulletin content disclosure elevation html important microsoft ms13-035 office privilege rating sanitization security update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  6. MS12-073 - Moderate : Vulnerabilities in Microsoft Internet Information Services (IIS) Could Allow I

    Severity Rating: Moderate Revision Note: V1.0 (November 13, 2012): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft Internet Information Services (IIS). The more severe vulnerability could allow information...
    • News
    • Thread
    • attacker disclosure ftp iis information microsoft moderate ms12-073 security server update vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  7. Security Advisory 2755801 addresses Adobe Flash Player issues

    Today we released Security Advisory 2755801 that addresses vulnerabilities in Adobe Flash Player in Internet Explorer 10 on Windows 8. The majority of customers have automatic updates enabled and will not need to take any action because protections will be downloaded and installed automatically...
    • News
    • Thread
    • adobe advisory automatic coordination customers disclosure flash player internet explorer management microsoft protection quality release timing security software threat landscape update update process vulnerabilities windows 8
    • Replies: 0
    • Forum: Security Alerts

  8. MS12-049 - Important : Vulnerability in TLS Could Allow Information Disclosure (2655992) - Version:

    Severity Rating: Important Revision Note: V1.0 (July 10, 2012): Bulletin published. Summary: This security update resolves a publicly disclosed vulnerability in TLS. The vulnerability could allow information disclosure if an attacker intercepts encrypted web traffic served...
    • News
    • Thread
    • attack bulletin cbc cipher disclosure encryption important information interception microsoft security tls traffic update vulnerability web
    • Replies: 0
    • Forum: Security Alerts

  9. MS10-070: Description of the security update for the Microsoft .NET Framework 3.5.1 in Windows 7 Ser

    Resolves a vulnerability in ASP.NET that could allow information disclosure. An attacker that successfully exploited this vulnerability could read data, such as the view state, which was encrypted by the server. Link Removed
    • News
    • Thread
    • asp.net data disclosure encryption exploitation framework information microsoft security update vulnerability windows 7
    • Replies: 0
    • Forum: Knowledge Base (KB)

  10. MS10-070: Description of the security update for the Microsoft .NET Framework 4 on Windows XP, Windo

    Resolves a vulnerability in ASP.NET that could allow information disclosure. An attacker that successfully exploited this vulnerability could read data, such as the view state, which was encrypted by the server. More...
    • News
    • Thread
    • asp.net data disclosure encryption framework information microsoft security update vulnerability windows xp
    • Replies: 0
    • Forum: Knowledge Base (KB)

  11. MAPP Update: Taking Action to Decrease Risk of Information Disclosure

    During our investigation into the disclosure of confidential data shared with our Microsoft Active Protections Program (MAPP) partners, we determined that a member of the MAPP program, Hangzhou DPTech Technologies Co., Ltd., had breached our non-disclosure agreement (NDA). Microsoft takes...
    • News
    • Thread
    • active breach compliance computing confidential controls disclosure enhancements information investigation mapp microsoft nda partners protection report risk security trustworthy update
    • Replies: 0
    • Forum: Security Alerts

  12. MS11-100: Description of the security update for the .NET Framework 4 on Windows XP, Windows Server

    Resolves a vulnerability in ASP.NET that could allow information disclosure. An attacker that successfully exploited this vulnerability could read data, such as the view state, which was encrypted by the server. More...
    • News
    • Thread
    • .net framework asp.net disclosure security update vulnerability windows server windows xp
    • Replies: 0
    • Forum: Knowledge Base (KB)

  13. MS11-087 - Critical : Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution

    Severity Rating: Critical Revision Note: V1.0 (December 13, 2011): Bulletin published. Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted...
    • News
    • Thread
    • 2011 bulletin critical december disclosure drivers execution font files kernel-mode malicious microsoft patch remote code revision security truetype update vulnerability web page windows
    • Replies: 0
    • Forum: Security Alerts

  14. Microsoft Security Advisory (2416728): Vulnerability in ASP.NET Could Allow Information Disclosure -

    Revision Note: V2.0 (September 28, 2010): Advisory updated to reflect publication of security bulletin Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-070 to address this issue. For more information about this issue...
    • News
    • Thread
    • advisory asp.net bulletin complaints cve-2010-3332 disclosure information investigation issue microsoft ms10-070 oracle padding public report revision note security security update september 2010 update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  15. MS08-069: Description of the security update for XML Core Services 4.0: November 11, 2008

    Resolves a security vulnerability that exists in Microsoft XML Core Services that could enable information disclosure. More...
    • News
    • Thread
    • core services disclosure kb954430 microsoft november 2008 security update vulnerability xml
    • Replies: 0
    • Forum: Knowledge Base (KB)

  16. Microsoft Security Advisory: Vulnerability in SSL/TLS could allow information disclosure

    Provides a link to Microsoft Security Advisory (2588513): Vulnerability in SSL/TLS could allow information disclosure. More...
    • News
    • Thread
    • advisory disclosure information microsoft networking security ssl tls update vulnerability
    • Replies: 0
    • Forum: Knowledge Base (KB)

  17. Microsoft Security Advisory (2416728): Vulnerability in ASP.NET Could Allow Information Disclosure -

    Revision Note: V2.0 (September 28, 2010): Advisory updated to reflect publication of security bulletin Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-070 to address this issue. For more information about this issue...
    • News
    • Thread
    • advisory asp.net cve-2010-3332 disclosure information microsoft ms10-070 security update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  18. Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure - V

    Revision Note: V2.0 (April 12, 2011): Advisory updated to reflect publication of security bulletin. Summary: Microsoft has completed the investigation into public reports of this vulnerability. We have issued MS11-026 to address this issue. For more information about this issue...
    • News
    • Thread
    • advisory bulletin cve-2011-0096 disclosure information mhtml microsoft security update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  19. Microsoft Security Advisory: Vulnerability in MHTML could allow information disclosure

    Provides a link to Microsoft Security Advisory (2501696): Vulnerability in MHTML could allow information disclosure. More...
    • News
    • Thread
    • 2501696 advisory disclosure information mhtml microsoft security vulnerability
    • Replies: 0
    • Forum: Knowledge Base (KB)

  20. MSRC Progress Report Shows Continued Progress of MSRC Key Initiatives

    Today, the MSRC released its Link Removed due to 404 Errort highlighting advancements of key Microsoft programs designed to help prevent and defend against online threats. The Microsoft programs featured in this paper include the following: The Link Removed due to 404 Error (MAPP) and Link...
    • News
    • Thread
    • adobe collaboration conferences customers disclosure exploitability feedback index industry initiatives mapp msrc msvr progress protection report security software updates vulnerabilities
    • Replies: 0
    • Forum: Security Alerts