WMF Vulnerability Security Update

Mike Reavey here from the MSRC- I just wanted to provide another quick update on the WMF vulnerability situation.  Microsoft is continuing to work on finalizing a security update for the vulnerability in WMF that is currently being exploited by some malicious attackers. The update has been on an expedited track since Microsoft became aware of …

WMF Vulnerability Security Update Read More »

New Security Advisory for Possible Windows Vulnerability

Hi everyone, Stephen Toulouse here. Just wanted to make everyone is aware that this evening the MSRC posted a security advisory regarding a possible vulnerability affecting the Graphics Rendering Engine in Windows.  The MSRC has made some additional information and guidance available to customers which you can read more about here. S. *This posting is provided “AS …

New Security Advisory for Possible Windows Vulnerability Read More »

Script for SUS 1.0 problem released

Hi everyone, Stephen Toulouse here.  We’ve released the script to help address the SUS 1.0 issue Craig mentioned earlier to the download center.  We’ve also updated the KB article that details the problem, click here to zoom straight to the section on the new script that is available. S. *This posting is provided “AS IS” …

Script for SUS 1.0 problem released Read More »

Todays updates and SUS 1.0

Hi everyone.  One tired Release Manager Craig here.  Today we released 2 new bulletins, details below.  But a quick note:  For the SUS 1.0 Admins, you may be experiencing some problems with all your previously approved updates are now showing up as “unapproved”.   This doesn’t impact the update level of your SUS clients, or the …

Todays updates and SUS 1.0 Read More »

December Advance Notification

Stephen Toulouse here gang. The Advance Notification for the security bulletin release for this month has posted.  This coming Tuesday, we’re planning to release two security bulletins affecting Microsoft Windows.  The maximum total severity rating for this month is Critical, so please update systems as soon as possible when the bulletins are available this coming Tuesday.  The …

December Advance Notification Read More »

Some info on the “cross-site scripting” issue affecting Internet Explorer

We’ve received some questions regarding a reported cross-site scripting (XSS) issue affecting Internet Explorer.  Google Desktop was used in a proof of concept to demonstrate how, in some cases, this issue could allow an attacker to obtain sensitive information.  This issue may be a bit confusing because it is not really an XSS issue.  A better way …

Some info on the “cross-site scripting” issue affecting Internet Explorer Read More »

Update to our recent advisory

Hi everyone, I’ve been working on my IT Forum update recapping our trip to Barcelona.  But I wanted to go ahead and let you know some breaking information. We’ve been made aware that there has been some malicious software exploiting the recently publicly disclosed Internet Explorer vulnerability.  We have just updated our security advisory to …

Update to our recent advisory Read More »