Windows カーネルの脆弱性 (アドバイザリ 979682)
Wednesday, January 20, 2010
小野寺です。 Windows カーネルに関連する特権の昇格の脆弱性情報が一般に公開されました。現在調査を行っています
Month Archives: January 2010
Internet Explorerのセキュリティ更新の事前告知 (定例外)
Tuesday, January 19, 2010
小野寺です。 「Internet Explorer 6 の悪用事例を確認 (セキュリティ アドバイザリ 979352)」でお伝え
Internet Explorerのセキュリティ更新の事前告知 (定例外)
Tuesday, January 19, 2010
「セキュリティ アドバイザリ 981374」でお伝えしている脆弱性の脆弱性の悪用を確認したことを、お伝え
Internet Explorerのセキュリティ更新を定例外リリースします
Tuesday, January 19, 2010
小野寺です。 「Internet Explorer 6 の悪用事例を確認 (セキュリティ アドバイザリ 979352)」でお伝え
Security Advisory 979352 – Going out of Band
Tuesday, January 19, 2010
We wanted to provide a quick update on the threat landscape and announce that we will release a security update out-of-band to help protect customers from this vulnerability. Based on our comprehensive monitoring of the threat landscape we continue to see very limited, and in some cases, targeted attacks. To date, the only successful attacks that we are aware of have been against Internet Explorer 6.
Additional information about DEP and the Internet Explorer 0day vulnerability
Monday, January 18, 2010
The new Internet Explorer security vulnerability described by Microsoft Security Advisory 979352 has received a lot of interest over the past few days. The Internet Explorer team is hard at work preparing a comprehensive security update to address the vulnerability and the MSRC announced today that as soon as the update is ready for broad distribution, it will be released.
Advisory 979352 Update for Monday January 18
Monday, January 18, 2010
For today’s update we want to share some insight on the current threat landscape for Security Advisory 979352, some new resources we have published and the current status on producing a security update. As we’ve previously reported, attacks remain targeted to a very limited number of corporations and are only effective against Internet Explorer 6.
Further Insight into Security Advisory 979352 and the Threat Landscape
Sunday, January 17, 2010
Hi All, We wanted to provide you some insight into the vulnerability reported in Microsoft Security Advisory 979352, which is related to our ongoing investigation into the recently publicized attacks against Google and other large corporate networks. We understand that there is a lot of noise about this topic right now and we know that our customers are receiving a lot of information about this situation from a variety of sources, so we want to provide some additional insight.
Advisory 979352 Updated
Friday, January 15, 2010
Hello, Today we updated Security Advisory 979352 to let customers know that we are aware that exploit code for the vulnerability used in recent attacks against IE 6 users, has now been made public. Information on which versions of Internet Explorer are vulnerable and what customers can do to protect themselves is included in the updated Security Advisory.
Assessing risk of IE 0day vulnerability
Friday, January 15, 2010
Yesterday, the MSRC released Microsoft Security Advisory 979352 alerting customers to limited, sophisticated attacks targeting Internet Explorer 6 customers. Today, samples of that exploit were made publicly available. Before we get into the details I want to make one thing perfectly clear. The attacks we have seen to date, including the exploit released publicly, only affect customers using Internet Explorer 6.