We have just published our advance notification for an out-of-band security bulletin release, with a target of 10:00 AM Pacific Time next Tuesday, July 28, 2009.
While this release is to address a single, overall issue, in order to provide the broadest protections possible to customers, we’ll be releasing two separate security bulletins:
1. One Security Bulletin for Visual Studio
2. One Security Bulletin for Internet Explorer
While we can’t go into specifics about the issue prior to release, we can say that the Visual Studio bulletin will address an issue that can affect certain types of applications. The Internet Explorer bulletin will provide defense-in-depth changes to Internet Explorer to help provide additional protections for the issues addressed by the Visual Studio bulletin. The Internet Explorer update will also address vulnerabilities rated as Critical that are unrelated to the Visual Studio bulletin that were privately and responsibly reported.
Customers who are up to date on their security updates are protected from known attacks related to this Out of Band release.
We’ll be holding two webcasts to give you details and take your questions:
· Webcast: July 28, 2009 1:00 p.m. Pacific Time
· Encore Webcast: July 28, 2009 4:00 p.m. Pacific Time
A reminder that this information is subject to change and that when we do release the security bulletins, we’ll let you know through the MSRC weblog.
Thanks,
Mike Reavey
*This posting is provided “AS IS” with no warranties, and confers no rights.*