WSUS KB2720211 : Common issues encountered and how to fix them

Hi everyone, Joao Madureira here. During the course of this week we saw an increase of cases installing Knowledge Base article KB 2720211. What follows are some guidelines we’ve established when facing some problems installing this KB.   UPDATE – 9/4/2012: There is a new update available that includes 2720211 plus many other fixes, including those… Read more

Windows Update agents suddenly and unexpectedly start downloading all updates from the Microsoft Update site

Hi everyone, Joao Madureira here.  Here on the WSUS support team we occasionally run into an issue where all of the client machines at a customer site suddenly and unexpectedly start accessing the Microsoft Update site and downloading all available updates. The immediate problem here is that the sudden increase in traffic can overload the… Read more

Autorun-Related Malware sees big declines, plus the June 2011 Microsoft Security Bulletin Release

Looks like the MSRC has some positive news regarding the recent security tightening around Autorun on the older Windows platforms.  Apparently the infection rate dropped pretty dramatically: The initial results are encouraging. As of May 2011, the number of infections found by the Malicious Software Removal Tool (MSRT) per scanned computer declined by 59 percent… Read more

The May 2011 Security Bulletin Release is Here

Just in case you somehow managed to miss the announcement, the May security bulletin release is upon us.  For all the details, including a video by Microsoft’s own Jerry Bryant, see the Microsoft Security Response Center blog here. J.C. Hornbeck | System Center Knowledge Engineer The App-V Team blog: The WSUS Support Team blog:… Read more

New KB: Windows Update may encounter error 0x80240fff when updates published on an internal server have the same Product Name and Category Name

Just a quick heads up on a new WSUS/Windows Update Knowledge Base article we published this morning. This one talks about an issue where after a Windows Update client connects to an internal server that has custom content published to it, the client encounters error code 0x80240fff. After encountering this error, the client can no… Read more

The April 2011 Microsoft Security Bulletin Release

Just an FYI that today we are releasing 17 security bulletins, 9 of which are Critical, and 8 rated Important.  These bulletins will increase protection by addressing 64 unique vulnerabilities in the following Microsoft products:  Microsoft Windows, Microsoft Office, Internet Explorer, Visual Studio, SMB, .NET Framework and GDI+.  I did want to point out that… Read more

Microsoft Releases Security Advisory 2524375

Today we’re releasing Security Advisory 2524375, to address nine fraudulent digital certificates issued by Comodo Group Inc, a root certificate authority. Comodo has since revoked the digital certificates. This is not a Microsoft security vulnerability; however, one of the certificates potentially affects Windows Live ID users via These certificates may be used to spoof… Read more

The March 2011 Microsoft Security Bulletin Release

Today, as part of our monthly security bulletin release, we have three bulletins addressing four vulnerabilities in Microsoft Windows and Microsoft Office. One bulletin is rated Critical, and this is the bulletin we recommend for priority deployment: MS11-015. This bulletin resolves one Critical-level and one Important-level vulnerability affecting certain media files in all versions of… Read more

Security Advisory 981374 Released

Just an FYI on a security bulletin release by the MSRC: Today we released Security Advisory 981374 addressing a publicly disclosed vulnerability in Internet Explorer 6 and Internet Explorer 7. Internet Explorer 8 is not affected by this issue. Customers using Internet Explorer 6 or 7 should upgrade to Internet Explorer 8 immediately to benefit… Read more

The MS10-015 security update has been re-released with new detection logic

The MSRC folks say that they have revised the installation packages for MS10-015 with new logic that prevents the security update from being installed on systems if certain abnormal conditions exist. Such conditions could be the result of an infection with a computer virus such as the Alureon rootkit. If these conditions are detected, the… Read more