swiat

Additional Fixes in Microsoft Security Bulletins

Monday, February 14, 2011

From time to time we receive questions regarding fixes not documented in security bulletins. Some call these “silent fixes.” We hope this blog post answers those questions and helps clarify Microsoft’s process in fixing and documenting all vulnerabilities and addressing internally discovered variants. It’s important to remember the following: As part of Microsoft’s comprehensive security update process, Microsoft will address variants of reported issues.

Read More

• Mitigations and Workarounds
• Risk Assessment
• Severity
• Silent Fix
• Variant

Assessing the risk of the February security updates

Tuesday, February 08, 2011

Today we released twelve security bulletins. Three have a maximum severity rating of Critical and nine have a maximum severity rating of Important. This release addresses three publicly disclosed vulnerabilities. We hope that the table below helps you prioritize the deployment of the updates appropriately for your environment. Bulletin Most likely attack vector Max Bulletin Severity Max Exploit-ability Likely first 30 days impact Platform mitigations and key notes MS11-003(IE) Victim browses to a malicious webpage.

Read More

• Attack Vector
• Exploitability
• Mitigations
• Rating
• Risk Asessment
• Workarounds

Regarding MS11-004, Addressing an IIS FTP Services Vulnerability

Tuesday, February 08, 2011

Today we released MS11-004 to address a vulnerability in the Microsoft FTP service an optional component of Internet Information Services (IIS). In this blog, we would like to cover some additional technical details of this vulnerability. First, we want to clarify that the vulnerability lies in the FTP service component of IIS.

Read More

• Attack Vector
• IIS
• Mitigations
• Workarounds

More information about the MHTML Script Injection vulnerability

Friday, January 28, 2011

Today we released Security Advisory 2501696 to alert customers to a publicly disclosed vulnerability in the MHTML protocol handler. This vulnerability could allow attackers to construct malicious links pointing to HTML documents that, when clicked, would render the targeted document and reflected script in the security context of the user and target location.

Read More

• Attack Surface Reduction
• Internet Explorer (IE)
• Protocol handlers
• Workarounds
• XSS

New workaround included in Security Advisory 2488013

Tuesday, January 11, 2011

We have just updated Security Advisory 2488013 for the publicly-disclosed Internet Explorer CSS vulnerability. It now reflects the fact that limited attacks attempting to exploit this vulnerability are present in-the-wild. The advisory also includes a new workaround that can help protect your computers until a security update is available. This workaround is different from the workarounds that we typically recommend, and so we wanted to give you more detail about it here.

Read More

• Internet Explorer (IE)
• Workarounds

Assessing the risk of public issues currently being tracked by the MSRC

Friday, January 07, 2011

At Microsoft, as at most large software vendors, we are likely to have publicly known issues under investigation at any given time. This is what we do on the Security Research & Defense team. Recently we’ve seen confusion from folks trying to make sense of some of the current public issues.

Read More

• Exploitation
• IE
• Killbit
• Mitigations
• Risk Asessment
• Workarounds

Assessing an IIS FTP 7.5 Unauthenticated Denial of Service Vulnerability

Wednesday, December 22, 2010

There has been some discussion around a publicly posted PoC code that exploits a vulnerability in IIS FTP 7.5, which ships with Windows 7 and Windows Server 2008 R2. Our engineering team is looking into the situation and has made a few preliminary observations that might clear up some confusion. We’ve observed three notable characteristics.

Read More

• IIS FTP IAC Interpret As Command

New Internet Explorer vulnerability affecting all versions of IE

Wednesday, December 22, 2010

Today we released Security Advisory 2488013 to notify customers of a new publicly-disclosed vulnerability in Internet Explorer (IE). This vulnerability affects all versions of IE. Exploiting this vulnerability could lead to unauthorized remote code execution inside the iexplore.exe process. Proof-of-concept exploit bypasses ASLR and DEP The Metasploit project recently published an exploit for this vulnerability using a known technique to evade ASLR (Address Space Layout Randomization) and bypass DEP (Data Execution Prevention).

Read More

• ASLR
• Defense-in-depth
• DEP
• EMET
• Exploitability
• Exploitation
• Internet Explorer (IE)
• Mitigations
• Risk Asessment
• Security Science
• Workarounds

Assessing the risk of the December security updates

Tuesday, December 14, 2010

Today we released seventeen security bulletins. Two have a maximum severity rating of Critical, fourteen have a maximum severity rating of Important, and one has a maximum severity rating of Moderate. We hope that the table below helps you prioritize the deployment of the updates appropriately for your environment. Bulletin Most likely attack vector Max Bulletin Severity Max Exploit-ability Likely first 30 days impact Platform mitigations and key notes MS10-090(IE) Victim browses to a malicious webpage.

Read More

• Priority
• Risk Asessment

MS10-104: SharePoint 2007 Vulnerability

Tuesday, December 14, 2010

Today we released MS10-104 to address vulnerability CVE-2010-3964 in SharePoint 2007 server with an important severity rating. In this blog, we would like to cover some additional details of this vulnerability. Is my SharePoint server affected by this vulnerability? There are two types of installations for a SharePoint server: standalone and farm.

Read More

• Mitigation
• SharePoint