Announcing the Microsoft Security Vulnerability Research and Defense Blog

Hi everyone.  This is Jonathan from the SWI team.  My co-workers and I have posted technical vulnerability information a few times here on the MSRC blog.  We’ll continue to contribute to the MSRC blog with technical clarifications but the bulk of our vulnerability research and defense information will be posted on a new SWI blog. …

3

MS07-069 Cumulative Security Update for Internet Explorer – Post Install Issue – Automated Work-Around

Hi, this is Kieron, the MSRC Program Manager responsible for Internet Explorer. On Tuesday we released Knowledge Base article KB946627, which highlighted a known issue with Internet Explorer 6 on Windows XP Service Pack 2 after applying MS07-069 Cumulative Security Update for Internet Explorer (942615). The article documented a workaround, which required a registry setting…

4

MS07-069 Cumulative Security Update for Internet Explorer – Post Install Issue

Hi, this is Kieron, the MSRC Program Manager responsible for Internet Explorer.   We have been investigating public reports of possible problems on systems that have installed the Cumulative Security Update for Internet Explorer (942615), released earlier this month.  We have some information to share with you regarding the results of our investigation into these…

4

MS07-069 Cumulative Security Update for Internet Explorer – Bulletin Webpage Upload Times

Hi, this is Kieron, the MSRC Program Manager responsible for Internet Explorer.   On Tuesday we released MS07-069 Cumulative Security Update for Internet Explorer. Since then, we have had reports from some customers experiencing difficulties loading the Bulletin webpage. We have received reports that pages are slow to load, not found or timing out. Please be…

1

December 2007 Monthly Release

Hi Everyone,   This is Tami Gallupe, MSRC release manager, and I just wanted to let you know that we’ve posted our bulletins for December 2007. We released seven bulletins today: three have a maximum severity of Critical, and four have a maximum severity of Important.  Here is a snapshot of what we released and…

3

December 2007 Advance Notification

Hello, I wanted to let you know that we just posted our Advance Notification for next week’s bulletin release which will occur on Tuesday, December 11, 2007 at or around 10 a.m. Pacific Time. It is important to remember that while the information posted below is intended to help with your planning, because it is…

3

MSRC Blog: Security Advisory 945713

Hello.  My name is Tim Rains and I work on the Security Response Communications Team at Microsoft.  My team works to provide communications around security response to our customers through the MSRC Blog and other types of communications vehicles. I want to let you know that we have just posted Microsoft Security Advisory 945713, which…

4

November 2007 Monthly Release

Hi, this is Simon, Release Manager in the MSRC.  I’d like to introduce you to our November security release.  Today we are releasing two new bulletins:   ·         MS07-061: This update addresses a vulnerability in Windows URI handling, which could allow remote code execution and has a maximum severity of Critical. ·         MS07-062: This update…

2

November 2007 Advance Notification

Hello, I wanted to let you know that we just posted our Advance Notification for next week’s bulletin release which will occur on Tuesday, November 13th, 2007 at or around 10 a.m. Pacific Time. It is important to remember that while the information posted below is intended to help with your planning, because it is…

1

MSRC Blog: Security Advisory (944653)

Today, in cooperation with Macrovision, we issued an Advisory related to a vulnerability in the Macrovision SECDRV.SYS Driver that is included with Windows XP and Windows 2003.  Equally important, Macrovision also released an Advisory for this issue, which includes a security update. We recommend that customers review the Macrovision advisory before applying it. Please review…

1