announcements

November 2012 Bulletin Release

Security UpdatesToday we released six security bulletins to help protect our customers – four Critical, one Important, and one Moderate – addressing 19 vulnerabilities in Microsoft Windows Shell, Windows Kernel, Internet Explorer, Internet Information Services (IIS), .NET Framework, and Excel. For those who need to prioritize deployment, we recommend focusing on these two Critical updates …

November 2012 Bulletin Release Read More »

Security Advisory 2755801 revised to address Adobe Flash Player issues (Nov. 6, 2012)

Today, in conjunction with Adobe’s update process, we have revised Security Advisory 2755801 to address issues in Adobe Flash Player in Internet Explorer 10. Customers who have automatic updates enabled will not need to take any action because protections will be downloaded and installed automatically. Customers who do not use automatic updates should apply the …

Security Advisory 2755801 revised to address Adobe Flash Player issues (Nov. 6, 2012) Read More »

Additional information about Internet Explorer and Security Advisory 2757760

We will release a Fix it in the next few days to address an issue in Internet Explorer, as outlined in the Security Advisory 2757760 that we released yesterday.   While we have only seen a few attempts to exploit the issue, impacting an extremely limited number of people, we are taking this proactive step …

Additional information about Internet Explorer and Security Advisory 2757760 Read More »

Announcing the BlueHat Prize for Advancement of Exploit Mitigations

Protecting the general computing ecosystem is a really tough job, and given some of the media headlines, it’s easy to get discouraged and wallow in the problems. It seems like we’re constantly bombarded with statistics measuring the number of bugs, vulnerabilities, or attacks in an attempt to build an accurate “state of the state.” The …

Announcing the BlueHat Prize for Advancement of Exploit Mitigations Read More »

Exploitability Index Improvements & Advance Notification Service for May 2011 Bulletin Release

Hello everyone, Today we are announcing changes to Microsoft’s Exploitability Index. Since October 2008, we have used the Exploitability Index to provide customers with valuable exploitability analysis for our security bulletins, and starting Tuesday this information will become even more comprehensive for those who use Microsoft’s latest platforms. The Exploitability Index assesses the likelihood of …

Exploitability Index Improvements & Advance Notification Service for May 2011 Bulletin Release Read More »

August 2010 Security Bulletin Release

Hello all. As part of our usual cycle of monthly updates, today Microsoft is releasing 14 security bulletins, addressing 34 vulnerabilities. Eight of those bulletins have a Critical severity rating, and we consider four of those to be high-priority deployments: MS10-052 This bulletin resolves a privately reported vulnerability in Microsoft’s MPEG Layer-3 audio codecs. The …

August 2010 Security Bulletin Release Read More »