Skip to main content
MSRC

MSRC

September 2012 Out-of-Band Security Bulletin Webcast, Q&A, and Slide Deck

Monday, September 24, 2012

Hello. Today we’re publishing the September 2012 Security Bulletin Out-of-Band Webcast Questions & Answers page. During the webcast, we fielded 19 questions. Those were focused on MS12-063, the out-of-band cumulative release for Internet Explorer, and Security Advisory 2755801, which involves an issue with the Adobe Flash Player implementation for Internet Explorer 10.

Microsoft releases MS12-063 – Cumulative Security Update for Internet Explorer

Friday, September 21, 2012

Today we released Security Update MS12-063 to address limited attacks against a small number of computers through a vulnerability in Internet Explorer versions 9 and earlier. The majority of customers have automatic updates enabled and will not need to take any action because protections will be downloaded and installed automatically. For those manually updating, we encourage you to apply this update as quickly as possible.

Security Advisory 2755801 addresses Adobe Flash Player issues

Friday, September 21, 2012

Today we released Security Advisory 2755801 that addresses vulnerabilities in Adobe Flash Player in Internet Explorer 10 on Windows 8. The majority of customers have automatic updates enabled and will not need to take any action because protections will be downloaded and installed automatically. Customers who do not use automatic updates should apply the guidance in the advisory immediately using update management software, or by checking the Microsoft Update service, to help ensure protection.

Internet Explorer Fix it available now; Security Update scheduled for Friday

Wednesday, September 19, 2012

Earlier this week, an issue impacting Internet Explorer affected a small number of customers. The potential exists, however, that more customers could be affected. As a result, today we have released a Fix it that is available to address that issue. This is an easy, one-click solution that will help protect your computer right away.

Additional information about Internet Explorer and Security Advisory 2757760

Tuesday, September 18, 2012

We will release a Fix it in the next few days to address an issue in Internet Explorer, as outlined in the Security Advisory 2757760 that we released yesterday. While we have only seen a few attempts to exploit the issue, impacting an extremely limited number of people, we are taking this proactive step to help ensure Internet Explorer customers are protected and able to safely browse online.

September 2012 Security Bulletin Webcast, Q&A, and Slide Deck

Friday, September 14, 2012

Hello, Today we published the September Security Bulletin Webcast Questions & Answers page. During the webcast, we fielded thirteen questions, focusing primarily on MS12-061, covering Visual Studio Team Foundation Server; MS12-062, affecting System Center Configuration Manager; and Security Advisory 2736233, addressing Update Rollup for ActiveX Kill Bits. We have the slide deck from the webcast available for on-demand viewing as well.

Update Tuesday overview for September 2012

Tuesday, September 11, 2012

As I previously mentioned in the Advance Notification blog on Thursday, today we are releasing two security bulletins, both of which are rated Important. These bulletins will increase protection by addressing two unique vulnerabilities in the following Microsoft products: MS12-061 (Visual Studio Team Foundation Server) This security update resolves a privately reported vulnerability in Visual Studio Team Foundation Server.

Security Advisory 2743314 released

Monday, August 20, 2012

Today, we published Security Advisory 2743314, which provides guidance that will help protect customers from a technique that could allow a man-in-the middle attack to obtain a user’s domain credentials when VPN is configured to use PPTP and MSCHAPv2. Customers concerned with this scenario are advised to review the guidance described in the advisory to help protect themselves.