security bulletin

Severity Rating: Important Revision Note: V1.0 (August 11, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker engineered a cross-site scripting (XSS) scenario by inserting a...

Severity Rating: Critical Revision Note: V1.0 (July 14, 2015): Bulletin published. Summary: This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet...

Severity Rating: Important Revision Note: V1.0 (June 9, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker places a malicious .dll file in a local directory on the machine or...

Severity Rating: Important Revision Note: V1.0 (March 10, 2015): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a...

Today, as part of Update Tuesday, we released seven security updates – three rated Critical and four rated Important in severity, to address 24 unique Common Vulnerabilities and Exposures (CVEs) in Microsoft Windows, Internet Explorer (IE), Office and Exchange. We encourage you to apply all of...

Today, as a part of our regular Update Tuesday process, we released four security bulletins – one rated Critical and three rated Important in severity – to address 42 Common Vulnerabilities & Exposures (CVEs) in Microsoft Windows, Internet Explorer, .NET Framework, and Lync Server. We encourage...

Severity Rating: Important Revision Note: V1.0 (September 9, 2014): Bulletin published. Summary: This security update resolves three privately reported vulnerabilities in Microsoft Lync Server. The most severe of these vulnerabilities could allow information disclosure if user clicks on a...

This update addresses the vulnerability discussed in Microsoft Security Bulletin MS14-052. To find out if other security updates are available for you, see the Additional Information section at the bottom of this page. Link Removed

This update addresses the vulnerability discussed in Microsoft Security Bulletin MS14-037. To find out if other security updates are available for you, see the Additional Information section at the bottom of this page. Link Removed

Severity Rating: Important Revision Note: V1.0 (May 13, 2014): Bulletin published. Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an authenticated attacker uses certain Active Directory Group...

At approximately 10 a.m. PDT, we will release an out-of-band security update to address the issue affecting Internet Explorer (IE) that was first discussed in Security Advisory 2963983. This update is fully tested and ready for release for all affected versions of the browser. The majority of...

Severity Rating: Revision Note: V18.0 November 13, 2012): Added the following Microsoft Security Bulletin to the Updates relating to Insecure Library Loading section: MS12-074, "Vulnerabilities in .NET Framework Could Allow Remote Code Execution." Summary: Microsoft is aware that research has...

Revision Note: V1.0 (December 10, 2013): Advisory published. Summary: Microsoft is announcing the availability of an update for all supported releases of Windows to change how signatures are verified for binaries signed with the Windows Authenticode signature format. The change is included with...

Original release date: September 10, 2013 Systems Affected Windows Operating System and Components Microsoft Server Software Microsoft Office Internet Explorer Overview Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates to address these...

22 supported vulnerabilities are being patched. Install all security updates as soon as possible. IMPORTANT NOTICE OF INTENT: THe following video is copyright 2011 Microsoft Corporation, provided here for non-commercial, educational, and personal use only. It is considered a security-related...

Original release date: July 09, 2013 Systems Affected Microsoft Windows Microsoft .NET Framework Microsoft Silverlight Microsoft Office Microsoft Visual Studio Microsoft Lync Internet Explorer Windows Defender Overview Select Microsoft software products contain multiple...

Original release date: June 17, 2013 | Last revised: June 18, 2013 Systems Affected Microsoft Windows Microsoft Internet Explorer Microsoft Office Overview Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates to address these...

Original release date: May 14, 2013 Systems Affected Microsoft Windows Internet Explorer Microsoft .NET Framework Microsoft Lync Microsoft Office Microsoft Windows Essentials Overview Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates...

Revision Note: Advance Notification published. Summary: This is an advance notification of security bulletins that Microsoft is intending to release on May 14, 2013. More...

Original release date: March 12, 2013 Systems Affected Microsoft Windows Microsoft Internet Explorer Microsoft Office Microsoft Server Software Microsoft Silverlight   Overview Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates to...