On 11 December 2007 Microsoft is planning to release seven new security bulletins. Below is a summary in order of severity. For more information on affected software, see the Affected Software section of the Advance Notification page, linked below. Microsoft Baseline Security Analyzer can detect whether...
On September 13, 2007, Scott Dunn of Windows Secrets reported "Windows Update (WU) started altering files on users' systems without displaying any dialog box to request permission. The only files that have been reportedly altered to date are nine small executables on XP and nine on Vista that...
Vinny Gullotto reported in the Microsoft Anti-Malware Team Blog that the January-June 2007 Security Incident Report is now available from the Microsoft Malware Protection Center. Before you read Vinny's report, let me familiarize you with some of the acronyms: FCS: Forefront Client Security MMPC...
Bill Sisk reported in The Microsoft Security Response Center (MSRC) blog that Security Advisory 943521 has been updated after they became aware of publicly disclosed exploit code being used in limited attacks on customers. "Third party applications are currently being used as the vector for attack...
Microsoft has released the following six security bulletins, having withdrawn one bulletin from release: MS07-055 addresses a vulnerability in Kodak Image Viewer, and is rated as a Critical bulletin. MS07-056 addresses a vulnerability Outlook Express and Windows Mail, and is rated as a Critical bulletin...
Further to Aubrey's post , Nate Clinton (Program Manager, Windows Update) explained the problem as " the latest version of Windows Update includes wups2.dll that was not originally present in Windows XP. Therefore, after the repair install of the OS, wups2.dll remains on the system but its registry...
The August Microsoft Security Bulletins are now posted and available for download. MS07-042 - Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (936227) MS07-043 - Vulnerability in OLE Automation Could Allow Remote Code Execution (921503) MS07-044 - Vulnerability in Microsoft...
Microsoft released the following security updates today: Critical: MS07-036 : This security update resolves three vulnerabilities that could allow remote code execution if a user opens a specially crafted Excel file. MS07-039 : This security update resolves two vulnerabilities in implementations of Active...
In April, we were provided with a preview of the Microsoft Malware Protection Center . Amid the hype of the projected Service Pack 1 for Windows Vista, the Microsoft Antimalware Engineering Team quietly announced the official Version 1 of the Microsoft Malware Protection Center Portal . A nice addition...
There were three KB Articles updated today, resulting in one important, and two recommended updates (depending on your version). The "Important" update relates to a revision to Daylight Saving Time. When I looked at the KB article, the change was merely designated as "June 26, 2007Added Windows Vista...