Microsoft is moving its Windows Live support to online forums, which sounds like a step down, until you realize that it was previously... »
Tag Archive
action games
advisory
advisory-summary
after-the-jump
apple
are-configured
cloud computing
culture
downloadable content
extreme computing
game
game diaries
internet
iphone
jump
latest games
less-impacted
microsoft
microsoft-security-patch
Microsoft Security Advisories
mobile
news
nintendo
office
online
patch-tuesday
playstation
press
remote-code
revision-note
security
security-patches
security-update
severity
shooters
software
strategy games
summary
time
video
vista
vulnerabilities
vulnerability
windows
windows 7
Microsoft Security Advisory (981374): Vulnerability in Internet Explorer Could Allow Remote Code Execution - 3/9/2010
Revision Note: V1.0 (March 9, 2010): Advisory published. »
Assessing the risk of the February Security Bulletins
This morning, we released 13 security bulletins. »
MS10-007: Additional information and recommendations for developers
Today we are releasing MS10-007 to address a URL validation issue generally applicable to the ShellExecute API. »
MS10-006 and MS10-012: SMB security bulletins
Today we released two bulletins to address vulnerabilities in SMB. MS10-006 addresses two vulnerabilities in the SMBv1 client implementation, and MS10-012 addresses four vulnerabilities in the SMB server implementation. In this blog entry, we want to help you understand the vulnerabilities and better prioritize the updates »
MS10-015 - Important: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165)
Bulletin Severity Rating:Important - This security update resolves one publicly disclosed and one privately reported vulnerability in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logged on to the system and then ran a specially crafted application »
MS10-014 - Important: Vulnerability in Kerberos Could Allow Denial of Service (977290)
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if a specially crafted ticket renewal request is sent to the Windows Kerberos domain from an authenticated user on a trusted non-Windows Kerberos realm. The denial of service could persist until the... »
MS10-013 - Critical: Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (977935)
Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Microsoft DirectShow. The vulnerability could allow remote code execution if a user opened a specially crafted AVI file »
MS10-011 - Important: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (978037)
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Microsoft Windows Client/Server Run-time Subsystem (CSRSS). »
MS10-003 - Important: Vulnerability in Microsoft Office (MSO) Could Allow Remote Code Execution (978214)
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. An attacker who successfully exploited this vulnerability could take complete control of an affected system »
Additional information about DEP and the Internet Explorer 0day vulnerability
The new Internet Explorer security vulnerability described by Microsoft Security Advisory 979352 has received a lot of interest over the past few days. The Internet Explorer team is hard at work preparing a comprehensive security update to address the vulnerability and the MSRC announced today that as soon as the update is ready... »