February 3, 2011 - Hello all - Today, as part of our usual monthly bulletin cadence, we are providing our Advance Notification Service for February's security bulletins. This month, we'll release 12 bulletins, three of them rated Critical and nine rated Important, addressing issues in Microsoft (continue reading...) Read more
January 28, 2011 - There is a new vulnerability that affects all supported versions of Windows and some unsupported versions. For you techies the “Vulnerability in MHTML Could Allow Information Disclosure” advisory is at https://www.microsoft.com/technet/security/advisory/2501696.mspx. If you are not a techie you might want (continue reading...) Read more
January 28, 2011 - Microsoft has just released security advisory 2501696 acknowledging a new zero day flaw (continue reading...) Read more
January 28, 2011 - Hello. Today we're releasing Security Advisory 2501696, which describes a publicly disclosed scripting vulnerability affecting all versions of Microsoft Windows. The main impact of the vulnerability is unintended information disclosure. We're aware of published information and proof-of-concept code that attempts to exploit this vulnerability, but (continue reading...) Read more
January 27, 2011 - Today Microsoft published today Security Advisory 2501696 describing a vulnerability (CVE-2011-0096) in the MHTML handler present on all versions of Windows. The vulnerability allows the execution of an XSS attack (continue reading...) Read more
January 27, 2011 - You might have seen recent reports that Windows 7 Service Pack 1 (SP1) has been sent to computer manufacturers. Originating from Microsoft’s Russian TechNet site, the news triggered speculation that Microsoft will move ahead with the release of (continue reading...) Read more
January 17, 2011 - Finding Patch Tuesday on the calendar can be a bit like working out Easter. The date of Easter is determined by a combination (continue reading...) Read more
January 13, 2011 - Hello, Today we published the January Security Bulletin Webcast Questions & Answers page. We fielded five questions on various topics during the webcast. We invite our customers to join us for the next public webcast on Wednesday, February 9th at (continue reading...) Read more
January 11, 2011 - This first Patch Tuesday in 2011 addresses the following Microsoft issues: Bulletin 1 (critical) addresses issues that are critical on Windows XP SP3, Vista and Windows 7 and issues that are important on Windows Server 2003, Windows Server (continue reading...) Read more
January 11, 2011 - Paul Henry, Security and Forensics Analyst for Lumension, discusses the impact of the January 2011 Patch Tuesday releases. Read more
January 11, 2011 - In the first Patch Tuesday of 2011, Microsoft published just two security bulletins, unsurprisingly named MS11-001 and MS11-002, fixing three vulnerabilities with two patches. All Microsoft security (continue reading...) Read more
January 11, 2011 - Hello - Today as part of our monthly security bulletin release we have two bulletins addressing three vulnerabilities in Microsoft Windows and Windows Server. This first bulletin is rated Important, while the second is rated Critical. MS11-001. This bulletin (continue reading...) Read more
January 11, 2011 - Microsoft January 2011 Patch Tuesday represents a slow start of 2011 as far as number of patches go. But while there are only two bulletins, there are a number of (continue reading...) Read more
January 6, 2011 - Hello everyone - It's a new year and the Microsoft Security Response Center is ready to provide the Advance Notice for January's security bulletins. We have two bulletins addressing three vulnerabilities in Windows. The first bulletin is Important and affects (continue reading...) Read more
January 4, 2011 - Hello - Today we released Security Advisory 2490606, which addresses a publicly disclosed vulnerability affecting Microsoft Windows Graphics Rendering Engine on Vista, Server 2003, and Windows XP. We are not aware of any affected customers, nor of any active (continue reading...) Read more
January 4, 2011 - Have you received an email seemingly from Microsoft's security team telling you to "Update your Windows"? Have you been sent a file called KB453396-ENU.zip and told to run it on your (continue reading...) Read more
December 23, 2010 - Microsoft acknowledged a new 0-day vulnerability in Internet Explorer in advisory 2488013. The vulnerability requires the targeted user to access a website where the attacker has placed a maliciously formatted CSS (continue reading...) Read more
December 22, 2010 - A remote code execution vulnerability against Internet Explorer was announced recently, and a proof-of-concept exploit has already been added to the Metasploit products. Microsoft doesn't (continue reading...) Read more
December 22, 2010 - Hello, Today we released Security Advisory 2488013 to address a public vulnerability that could affect customers using Internet Explorer 6, 7 and 8 if they visit a website hosting malicious code. Currently the impact of this vulnerability is limited (continue reading...) Read more
December 17, 2010 - Hello, Today we published the December 2010 Security Bulletin Webcast Questions & Answers page. We fielded 17 questions, most concerning the Internet Explorer update and the re-releases of bulletins this month. We invite our customers to join us for (continue reading...) Read more