Microsoft Security Bulletin for July 2014

by certifiedbug on July 8, 2014

in Microsoft

MSRC

This month’s release includes six new security bulletins, addressing 29 Common Vulnerability and Exposures (CVEs) in Microsoft Windows and Internet Explorer. Two of these security bulletins are rated Critical, three are rated Important, and one rated Moderate in severity. As always, we encourage you to apply all of the updates, but for those who prioritize, we recommend the Windows Journal and Internet Explorer (IE) updates be on the top of your list.

http://blogs.technet.com/b/msrc/archive/2014/07/08/july-2014-security-bulletin-release.aspx

https://technet.microsoft.com/library/security/ms14-jul

Tags:

{ 0 comments }

Microsoft Security Bulletin for June 2014

by certifiedbug on June 10, 2014

in Microsoft

Microsoft released seven bulletins. Two listed as Critical and five Important in severity, addressing 66 Common Vulnerabilities and Exposures (CVEs) for Microsoft Windows, Internet Explorer, and Microsoft Office customers.

Theoretical Thinking and the June 2014 Bulletin Release
http://blogs.technet.com/b/msrc/archive/2014/06/10/theoretical-thinking-and-the-june-2014-bulletin-release.aspx

Technet: https://technet.microsoft.com/library/security/ms14-jun

Tags:

{ 0 comments }

Microsoft Security Bulletin for May 2014

by certifiedbug on May 9, 2014

in Microsoft

On the second Tuesday of the month, May 13, 2014, at approximately 10:00 a.m. PDT Microsoft will release eight bulletins, two rated Critical and six rated Important in severity.

This is an advance notification of security bulletins that Microsoft is intending to release on May 13, 2014. This notification replaces the out-of-band bulletin summary that was released on May 1, 2014, and does not include the out-of-band bulletin (MS14-021), which was released on May 1, 2014.

This bulletin advance notification will be replaced with the May bulletin summary on May 13, 2014. For more information about the bulletin advance notification service, see Microsoft Security Bulletin Advance Notification.

https://technet.microsoft.com/library/security/ms14-may

Tags:

{ 0 comments }

Microsoft has released a security update to address the Internet Explorer (IE) vulnerability first reported as Security Advisory 2963983.

Also,

We have made the decision to issue a security update for Windows XP users. Windows XP is no longer supported by Microsoft, and we continue to encourage customers to migrate to a modern operating system, such as Windows 7 or 8.1. Additionally, customers are encouraged to upgrade to the latest version of Internet Explorer, IE 11. You can find more information on the Microsoft Security Bulletin summary webpage.

http://blogs.technet.com/b/msrc/archive/2014/05/01/security-update-released-to-address-recent-internet-explorer-vulnerability.aspx

https://technet.microsoft.com/en-us/library/security/ms14-may.aspx

Tags:

{ 0 comments }

Microsoft Security Bulletin for April 2014

April 8, 2014

MSRC Today Microsoft released four bulletins to address 11 CVEs in Microsoft Windows, Internet Explorer and Microsoft Office. The update for Microsoft Word addresses the issues described in Microsoft Security Advisory 2953095. For an overview of all the updates released this month: http://blogs.technet.com/b/msrc/archive/2014/04/08/the-april-2014-security-updates.aspx http://technet.microsoft.com/en-us/security/bulletin/ms14-apr Tags: Vulnerability-Windows-Update

Read the full article →

Microsoft Security Bulletin for March 2014

March 7, 2014

Microsoft’s advance notification for the release of five bulletins for March 2014, two rated Critical and three rated Important in severity. The updates address issues in Microsoft Windows, Internet Explorer and Silverlight. The update provided in MS14-012 fully addresses the issue first described in Security Advisory 2934088. While we have seen a limited number of […]

Read the full article →

Microsoft Security Bulletin for February 2014

February 7, 2014

On Tuesday, February 11, 2014, at approximately 10:00 a.m. PST Microsoft is planning to release five bulletins. Two Critical updates address vulnerabilities in Microsoft Windows and Security Software while the three Important-rated updates address issues in Windows and the .NET Framework. MSRC: http://blogs.technet.com/b/msrc/archive/2014/02/06/advance-notification-service-for-february-2014-security-bulletin-release.aspx TechNet: http://technet.microsoft.com/en-us/security/bulletin/ms14-feb Tags: Vulnerability-Windows-Update

Read the full article →

Krebs: Jan 14 Security Updates for Windows, Java, Flash & Reader

January 14, 2014

Krebs On Security Adobe, Microsoft and Oracle today each issued security updates to fix serious vulnerabilities in their products. Adobe released patches for AIR, Acrobat, Flash and Reader, while Microsoft pushed out fixes to shore up at least a half dozen security weaknesses in Windows and Office. Oracle released an update for Java that fixes […]

Read the full article →

Microsoft Security Bulletin for January 2014

January 13, 2014

On Tuesday, January 14, 2014, Microsoft is planning to release four bulletins. All bulletins this month are rated Important in severity and address vulnerabilities in Microsoft Windows, Office, and Dynamics AX. The update provided in MS14-002 fully addresses the issue first described in Security Advisory 2914486. We have only seen this issue used in conjunction […]

Read the full article →

Avoiding Weak Passwords

December 6, 2013

Microsoft Research Avoiding Vulnerable Passwords—and Rules, Too Telepathwords Snippet: The free online research tool, launched Dec. 5, is called Telepathwords. Users can visit the project website and test the strength of their passwords—current ones, past ones, or ones they’re considering using. “The system doesn’t ask the user to learn anything up-front or follow any specific […]

Read the full article →