Microsoft Adds Critical IE Patches Under the Wire
The expected continued respite from deploying Internet Explorer patches was apparently a mirage as Microsoft changed course from last Thursday’s advance notification and added two more bulletins to the...
View ArticleIE to Block Older ActiveX Controls, Starting with Java
Microsoft announced that it will block older ActiveX controls in Internet Explorer, starting with Java.
View ArticleMicrosoft Patches OLE Zero Day, Recommends EMET 5.1 Before Applying IE Patches
Microsoft patched a zero-day vulnerability in OLE being used in targeted attacks as part of its November 2014 Patch Tuesday security bulletins, one of four critical updates released today.
View ArticleMicrosoft Patches Vulnerability Under Attack and Google-Disclosed Zero Day
Microsoft issued eight Patch Tuesday security bulletins, including a fix for a vulnerability disclosed by Google and another under active attack.
View ArticleMonster IE Update Top Patch Tuesday Priority
Microsoft released its February 2015 Patch Tuesday security bulletins, including a massive update for Internet Explorer and a patch for a Windows zero day disclosed by Google.
View ArticleMicrosoft Group Policy Vulnerability Affects All Windows Computers
Details were released on two Microsoft Group Policy vulnerabilities affecting all Windows machines going back to Windows Server 2003. The flaws were addressed in separate Patch Tuesday security...
View ArticlePatched Windows Kernel-Mode Driver Flaw Exploitable With One Bit Change
Details have been disclosed on a Windows kernel-mode driver privilege escalation vulnerability that was patched Tuesday by Microsoft.
View ArticleActive DoS Exploits for MS15-034 Under Way
Public denial-of-service exploits for a critical vulnerability in Microsoft's implementation of the HTTP protocol stack, HTTP.sys are under way, while remote code execution attacks may still be to come.
View ArticleMicrosoft Patches Remote Code Execution Bugs in IE, Font Drivers, Windows...
The May 2015 Microsoft Patch Tuesday security updates include 13 bulletins, three of them rated critical for bugs in IE, font drivers and Windows Journal.
View ArticleCritical IE Update One of Eight Microsoft Security Bulletins
Microsoft released two critical bulletins—eight overall—as part of the June 2015 Microsoft Patch Tuesday security updates. One of the critical bulletins patches 24 vulnerabilities in Internet Explorer.
View ArticleBypass Developed for Microsoft Memory Protection, Control Flow Guard
A researcher at Bromium is expected at DerbyCon to disclose a memory corruption mitigation bypass of Microsoft Control Flow Guard.
View ArticleMicrosoft Patches Critical Vulnerabilities in its Browsers
Microsoft released 13 security bulletins, five of which it rated critical, including separate advisories patching two dozen flaws in IE and Microsoft Edge browsers.
View ArticleWindows PDF Library Flaw Puts Edge Users at Risk for RCE
Microsoft today released nine security bulletins as part of its August 2016 Patch Tuesday updates.
View ArticlePatch Tuesday Returns; Microsoft Quiet on Postponement
Microsoft released 18 security bulletins, eight rated critical. The company also patched publicly disclosed vulnerabilities that surfaced since last month’s postponement of Patch Tuesday.
View Article