MS12-006 SSL/TLS の脆弱性のちょっと詳しい解説
Sunday, January 29, 2012
マイクロソフトは、2012 年 1 月 SSL/TLS の脆弱性 (CVE-2011-3389) を解決するセキュリティ更新プログラム MS12-006 を公開しました。こ
Month Archives: January 2012
日本マイクロソフト セキュリティチームFacebook も始めました!!
Wednesday, January 25, 2012
2017/09/05: 日本マイクロソフトが提供する公式 Facebook ページ「日本マイクロソフト セキュリティチーム」は、2017 年 9 月
ちょっといいセキュリティの資料とツール その 2 - MOICE (標的型攻撃メール対策に効果あり)
Sunday, January 15, 2012
2011 年、特定の企業や政府機関を標的とした標的型攻撃メールが数多く見られました。その手法として、メールに
January 2012 Security Bulletin Webcast Q&A
Thursday, January 12, 2012
Hello, Today we published the January Security Bulletin Webcast Questions & Answers page. We fielded nine questions on various topics during the webcast, including bulletins released, deployment tools, and update detection tools. There were two questions during the webcast that we were unable to answer and we have included those questions and answers on the Q&A page.
2012 年 1 月のセキュリティ情報 (月例)
Tuesday, January 10, 2012
先週の事前通知でお知らせしましたとおり、計 7 件 (緊急 1 件、重要 6 件) のセキュリティ情報を公開しました
2012 年 1 月のワンポイント セキュリティ
Tuesday, January 10, 2012
皆さん、こんにちは! 先ほど 1 月のマイクロソフト ワンポイント セキュリティ情報を公開しました。 本日 1 月 11
Assessing risk for the January 2012 security updates
Tuesday, January 10, 2012
Today we released seven security bulletins. One has a maximum severity rating of Critical with the other six having a maximum severity rating of Important. We hope that the table below helps you prioritize the deployment of the updates appropriately for your environment. Bulletin Most likely attack vector Max Bulletin Severity Max Exploit-ability rating Likely first 30 days impact Platform mitigations and key notes MS12-004(Windows Media) Victim browses to a malicious website or opens a malicious media file.
January 2012 Security Bulletins Released
Tuesday, January 10, 2012
Hello. As I previously mentioned in the Advance Notification Service blog post on Thursday, today we are releasing seven security bulletins, one of which is rated Critical in severity, with the remaining six classified as Important. These bulletins will address eight vulnerabilities in Microsoft products. Customers should plan to install all of these updates as soon as possible.
More information on MS12-004
Tuesday, January 10, 2012
This month we released MS12-004 to address CVE-2012-0003 and CVE-2012-0004. CVE-2012-0003 The most severe of these vulnerabilities is CVE-2012-0003 which is a Critical, Remote Code Execution vulnerability. This CVE affects all editions of Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008. Windows 7 is not affected by this vulnerability.
More information on the impact of MS12-001
Tuesday, January 10, 2012
Today we released MS12-001, which addresses an issue that can enable an attacker to bypass a defense in depth feature known as SafeSEH. This bypass is limited in scope to applications that make use of binaries that were built with Microsoft Visual C++ .NET 2003 RTM. Binaries that have been built with Microsoft Visual C++ .