Microsoft Security Response Center Blog

Mike Nash on the Security Update for the WMF Vulnerability

Thursday, January 05, 2006

Hi there. Mike Nash from Microsoft here. For those of you who don’t know me, I am the Corporate Vice President responsible for security at Microsoft. Given the recent events around the Windows Meta File format vulnerability, an ongoing dialogue I have had with some customers and our recent decision to release an update for Windows out of band to correct this vulnerability, I thought I would take a minute to give you a sense of the thought process behind Microsoft’s decision.

Microsoft Security Advisory on Win32/Sober

Wednesday, January 04, 2006

Hi everyone, Stephen Toulouse here. There is a lot of activity happening within the MSRC this week so I wanted to make sure that, in addition to the guidance we’ve put out around the WMF vulnerability, that we also let you know that we’ve issued a security advisory regarding recent variants of the Win32/Sober worm.

Updated Advisory: WMF Vulnerability

Tuesday, January 03, 2006

Hi folks- Kevin Kean here again. We here in the MSRC have been hard at work on this WMF vulnerability and so I wanted to provide you all with an update on the situation. When the MSRC learned of the attacks on December 27, 2005, we mobilized under what we call the Software Security Incident Response Process (SSIRP) to analyze the attack, assess its scope and determine and the appropriate guidance for customers, as well as to engage with anti-virus partners and law enforcement.

WMF Vulnerability Security Update

Tuesday, January 03, 2006

Mike Reavey here from the MSRC- I just wanted to provide another quick update on the WMF vulnerability situation. Microsoft is continuing to work on finalizing a security update for the vulnerability in WMF that is currently being exploited by some malicious attackers. The update has been on an expedited track since Microsoft became aware of the attacks on December 27th.

A few thoughts on the WMF vulnerability

Friday, December 30, 2005

Hi folks- this is Kevin Kean from the MSRC, writing what may just be my last MSRC blog entry for 2005. This morning we noticed that there are some people who are still looking for more information about the Windows Metafile (WMF) vulnerability that we issued a security advisory for on Wednesday.

• Pages

A few thoughts on the WMF vulnerability

Friday, December 30, 2005

Hi folks- this is Kevin Kean from the MSRC, writing what may just be my last MSRC blog entry for 2005. This morning we noticed that there are some people who are still looking for more information about the Windows Metafile (WMF) vulnerability that we issued a security advisory for on Wednesday.

New Security Advisory for Possible Windows Vulnerability

Wednesday, December 28, 2005

Hi everyone, Stephen Toulouse here. Just wanted to make everyone is aware that this evening the MSRC posted a security advisory regarding a possible vulnerability affecting the Graphics Rendering Engine in Windows. The MSRC has made some additional information and guidance available to customers which you can read more about here.

Script for SUS 1.0 problem released

Tuesday, December 20, 2005

Hi everyone, Stephen Toulouse here. We’ve released the script to help address the SUS 1.0 issue Craig mentioned earlier to the download center. We’ve also updated the KB article that details the problem, click here to zoom straight to the section on the new script that is available. S. *This posting is provided “AS IS” with no warranties, and confers no rights.

Todays updates and SUS 1.0

Tuesday, December 13, 2005

Hi everyone. One tired Release Manager Craig here. Today we released 2 new bulletins, details below. But a quick note: For the SUS 1.0 Admins, you may be experiencing some problems with all your previously approved updates are now showing up as “unapproved”. This doesn’t impact the update level of your SUS clients, or the ability to deploy today’s updates with SUS 1.

December Advance Notification

Thursday, December 08, 2005

Stephen Toulouse here gang. The Advance Notification for the security bulletin release for this month has posted. This coming Tuesday, we’re planning to release two security bulletins affecting Microsoft Windows. The maximum total severity rating for this month is Critical, so please update systems as soon as possible when the bulletins are available this coming Tuesday.