Navigation section
privately reported
-
MS15-028 - Important: Vulnerability in Windows Task Scheduler Could Allow Security Feature...
Severity Rating: Important Revision Note: V1.0 (March 10, 2015): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow Security Feature Bypass if a user runs a specially crafted application that is...- News
- Thread
- bulletin impersonation march 2015 microsoft privately reported security security bypass task scheduler update vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
MS14-063 - Important: Vulnerability in FAT32 Disk Partition Driver Could Allow Elevation of...
Severity Rating: Important Revision Note: V1.0 (October 14, 2014): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. An elevation of privilege vulnerability exists in the way the Windows FASTFAT system driver interacts with FAT32...- News
- Thread
- arbitrary code bulletin drivers elevation exploit fastfat fat32 important microsoft october 2014 patch privately reported privilege risk security software update vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
MS13-060 - Critical : Vulnerability in Unicode Scripts Processor Could Allow Remote Code...
Severity Rating: Critical Revision Note: V1.0 (August 13, 2013): Bulletin published. Summary: This security update resolves a privately reported vulnerability in the Unicode Scripts Processor included in Microsoft Windows. The vulnerability could allow remote code execution if a user viewed a...- News
- Thread
- admin rights application attack critical documents execution exploitation extended security updates microsoft ms13-060 opentype privately reported remote code execution system impact unicode user account user rights vulnerability webpage
- Replies: 0
- Forum: Security Alerts
-
MS11-007 - Critical : Vulnerability in the OpenType Compact Font Format (CFF) Driver Could...
Severity Rating: Critical Revision Note: V2.1 (July 9, 2013): Bulletin revised to announce a detection change that excludes Windows 7 language packs from the 2485376 update for Windows XP Professional x64 Edition Service Pack 2. This is a detection change only. Customers who have already...- News
- Thread
- announcement bug fixes cff driver critical detection change email security font format internet safety online threats patch privately reported remote code execution security update user awareness vulnerability windows windows 7 windows xp
- Replies: 0
- Forum: Security Alerts
-
MS13-006 - Important : Vulnerability in Microsoft Windows Could Allow Security Feature Bypass...
Severity Rating: Important Revision Note: V1.2 (July 9, 2013): Bulletin revised to announce a detection change in the Windows Vista packages for the 2785220 update to correct a Windows Update reoffering issue. This is a detection change only. Customers who have already successfully updated their...- News
- Thread
- attacker bulletin cybersecurity detection change encryption handshake important microsoft patch privately reported reoffering security ssl tls update vulnerability web traffic windows windows vista
- Replies: 0
- Forum: Security Alerts
-
MS13-033 - Important : Vulnerability in Windows Client/Server Run-time Subsystem (CSRSS) Could Allow
Severity Rating: Important Revision Note: V1.0 (April 9, 2013): Bulletin published. Summary: This security update resolves a privately reported vulnerability in all supported editions of Windows XP, Windows Vista, Windows Server 2003, and Windows Server 2008. The...- News
- Thread
- attack bulletin credentials csrss elevation exploit important local logon ms13-033 patch privately reported privilege security update vulnerability windows server windows vista windows xp
- Replies: 0
- Forum: Security Alerts
-
MS13-005 - Important : Vulnerability in Windows Kernel-Mode Driver Could Allow Elevation of Privileg
Severity Rating: Important Revision Note: V1.1 (January 9, 2013): Corrected detection and deployment summary tables. This is an informational change only. Customers who have already successfully updated their systems do not need to take any action. Summary: This security...- News
- Thread
- application attacker bulletin deployment detection elevation important information kernel-mode microsoft patch privately reported privileg revision security system update vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
MS12-052 - Critical : Cumulative Security Update for Internet Explorer (2722913) - Version: 1.1
Severity Rating: Critical Revision Note: V1.1 (August 15, 2012): Removed erroneous FAQ for Windows 8 Release Preview and Windows Server 2012 Release Candidate releases. The Windows 8 Release Preview and Windows Server 2012 Release Candidate releases are not affected by the...- News
- Thread
- attacker august 2012 bulletin critical cumulative exploitation internet explorer ms12-052 privately reported release preview remote code execution security update user rights vulnerabilities webpage windows 8 windows server
- Replies: 0
- Forum: Security Alerts
-
MS12-038 - Critical : Vulnerability in .NET Framework Could Allow Remote Code Execution (2706726) -
Severity Rating: Critical Revision Note: V1.0 (June 12): Bulletin published. Summary: This security update resolves one privately reported vulnerability in the Microsoft .NET Framework. The vulnerability could allow remote code execution on a client system if a user views a...- News
- Thread
- ad content browser bulletin code security compromised websites critical email links exploitation extended security updates messenger microsoft net framework privately reported remote code execution user content user rights vulnerability web attack xaml
- Replies: 0
- Forum: Security Alerts
-
MS11-100 - Critical : Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (2638420)
Severity Rating: Critical Revision Note: V1.3 (February 1, 2012): Corrected registry keys and installation switches in the deployment tables for Windows Server 2003 and Windows Server 2008, and installation switches in the deployment table for Windows Vista. This is an informational...- News
- Thread
- asp.net attacker critical elevation of privilege exploit installation ms11-100 net framework privately reported publicly disclosed registry security security bulletin server 2003 server 2008 update vulnerability web request windows vista
- Replies: 0
- Forum: Security Alerts
-
MS11-100 - Critical : Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (2638420)
Severity Rating: Critical Revision Note: V1.3 (February 1, 2012): Corrected registry keys and installation switches in the deployment tables for Windows Server 2003 and Windows Server 2008, and installation switches in the deployment table for Windows Vista. This is an informational...- News
- Thread
- access denied asp.net attack command execution critical deployment elevation of privilege exploitation extended security updates information disclosure informational change microsoft net framework privately reported registry server 2003 server 2008 user account vulnerabilities windows vista
- Replies: 0
- Forum: Security Alerts
-
MS12-021 - Important : Vulnerability in Visual Studio Could Allow Elevation of Privilege (2651019) -
Severity Rating: Important Revision Note: V1.0 (March 13, 2012): Bulletin published. Summary: This security update resolves one privately reported vulnerability in Visual Studio. The vulnerability could allow elevation of privilege if an attacker places a specially crafted...- News
- Thread
- attack bulletin credentials elevation of privilege ms12-021 privately reported security update visual studio vulnerability
- Replies: 0
- Forum: Security Alerts
-
MS11-093 - Important : Vulnerability in OLE Could Allow Remote Code Execution (2624667) - Version: 1
Severity Rating: Important Revision Note: V1.0 (December 13, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in all supported editions of Windows XP and Windows Server 2003. This security update is rated Important for all...- News
- Thread
- 2011 admin rights affected software attack bulletin execution exploit extended security updates important ms11-093 ole patch management privately reported remote code execution software security user account user rights vulnerability windows server windows xp
- Replies: 0
- Forum: Security Alerts
-
MS11-049 - Important : Vulnerability in the Microsoft XML Editor Could Allow Information Disclosure
Severity Rating: Important Revision Note: V2.0 (August 9, 2011): Bulletin rereleased to announce a detection change to the update for Microsoft Visual Studio 2005 Service Pack 1 (KB2251481) to add detection for related software listed in the update FAQ. There were no changes to the...- News
- Thread
- 2011 affected software compromise detection change disco file extended security updates information disclosure kb2251481 microsoft privately reported security security bulletin service pack update faq user rights visual studio vulnerability web services xml
- Replies: 0
- Forum: Security Alerts
-
MS11-021 - Important: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279)
Bulletin Severity Rating:Important - This security update resolves nine privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited any of these...- News
- Thread
- admin rights attack bulletin cve excel exploit important microsoft office patch privately reported remote code execution security update user account user rights vulnerabilities
- Replies: 0
- Forum: Security Alerts
-
MS10-080 - Important: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2293211)
Severity Rating: Important - Revision Note: V1.0 (October 12, 2010): Bulletin published.Summary: This security update resolves thirteen privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Excel file or...- News
- Thread
- 2010 attack bulletin excel execution exploitation file access important malware microsoft office privately reported remote code execution risk security software update user rights vulnerabilities warning
- Replies: 0
- Forum: Security Alerts
-
MS10-072 - Important: Vulnerabilities in SafeHTML Could Allow Information Disclosure (2412048)
Bulletin Severity Rating:Important - This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Microsoft SharePoint and Windows SharePoint Services. The vulnerabilities could allow information disclosure if an attacker submits specially...- News
- Thread
- attack bulletin cybersecurity extended security updates incident response information disclosure microsoft ms10-072 patch privately reported publicly disclosed safehtml script injection sharepoint target threats vulnerability web security windows services
- Replies: 0
- Forum: Security Alerts
-
MS10-080 - Important: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2293211)
Bulletin Severity Rating:Important - This security update resolves thirteen privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Excel file or a specially crafted Lotus 1-2-3 file. An attacker who...- News
- Thread
- admin rights cybersecurity excel execution important lotus 1-2-3 microsoft office patch privately reported remote code execution risk management security software threats update user rights vulnerabilities
- Replies: 0
- Forum: Security Alerts