1 min
Patch Tuesday
June Patch Tuesday
This month's Patch Tuesday was another biggie: 16 bulletins addressing 34
vulnerabilities across IE, Office and Windows...
Top of the list of things to watch out for are two “critical” bulletins:
MS11-050 and MS11-52. These are are effectively attacker's delight since they
are browser based, which are the most coveted exploits. They affect Internet
Explorer 6,7, and 8: and once these vulnerabilities are weaponized they will be
a significant problem as many organizations give their users admi
1 min
Patch Tuesday
May Patch Tuesday
So yesterday was Patch Tuesday, and following a mammoth April
[https://community.rapid7.com/blogs/rapid7/2011/04/15/april-patch-tuesday-round-up]
, it was a pretty quiet one, with only 2 vulnerabilities reported
[http://www.microsoft.com/technet/security/Bulletin/MS11-may.mspx], and only one
of those given the most severe rating of “critical”. That said, of course any
vulnerability reported should be investigated and understood, and particularly
those rated critical.
This month the critical
2 min
Microsoft
April Patch Tuesday Round-Up
LOTS of patches from Microsoft this week...
This week's Patch Tuesday was pretty significant, with a record-tying 17
bulletins that patch a record 64 vulnerabilities, 15 more than the previous
largest-ever set in October 2010. As usual, the Rapid7 team was all over it,
monitoring the threat and trying to help out where possible.
This month's bulletin addresses vulnerabilities across Microsoft Windows,
Microsoft Office, Internet Explorer, Visual Studio, .NET Framework and GDI .
There are seve
2 min
Vulnerability Disclosure
March Patch Tuesday Roundup
Since Microsoft is on this new staggered pattern of releases, we can expect a
feast or famine every other month...so get used to it. Depending on what side of
the desk you sit on you can adjust the context. With that being said, this
month's release brought us 3 patches addressing 4 vulnerabilities. I think we
were all expecting to see the MHTML
[http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0096] protocol
handler issue resolved, however it didn't make the cut. Make sure IE is in
r
2 min
Patch Tuesday
January Patch Tuesday Roundup
So I know we all were hoping to see a fix for some of this Windows Graphic
Rendering Engine [http://] nastiness...but no go. For now, you'll need to resort
to the good ol' FixIt [http://support.microsoft.com/kb/2490606] option or if you
wanna get your hands dirty, you can modify the ACL on shimgvw.dll directly.
Either way, if you're running IE, you'll have to patiently wait for the official
patch release.
So this monthly release was lean-n-mean, Microsoft released (2) bulletins,
addressing (3)
1 min
Patch Tuesday
November Patch Tuesday Roundup
Microsoft's November Patch Tuesday was fairly light with only 3 security
bulletins covering 11 vulnerabilities, only one bulletin, MS10-087, was rated
critical. The bulletin related to MS Office 2007 and Office 2010
vulnerability which could be exploited by a classic drive by type attack when a
customer views a malicious RTF.
As Josh Abraham, Rapid7 security research analyst noted, the fact that November
is fairly light could be a blessing. "Based on the huge amount of patches from
last mo
1 min
Patch Tuesday
October Patch Tuesday Roundup
Although Microsoft's October patch covers 39 vulnerabilities, there are only 4
critical bulletins. One of the vulnerabilities, covered by bulletin MS10-083,
was reported to Microsoft by HD Moore back in 2006. Unfortunately, according
to HD Moore, despite the long wait, the fix “does not completely solve the
underlying vulnerability, but it does block the easiest routes to exploitation.”
In addition, Josh Abraham, one of Rapid7's vulnerability research experts,
recommend paying attention to
2 min
Patch Tuesday
September Patch Tuesday Roundup
Microsoft's patch for September includes 4 Critical Bulletins and 5 Important
Bulletins covering 11 vulnerabilities.
A couple vulnerabilities are worth noting including:
MS10-064 a vulnerability in Microsoft Outlook allows for Remote Code Execution.
This is the classic drive-by malware in which the attacker sends a malicious
email message to the victim. Simply by opening the contents of an email, the
attacker can gain full control of the victim's machine. Organizations should
conduct user aw
2 min
Patch Tuesday
August Patch Tuesday Roundup
Microsoft's patch this month, which consists of 14 bulletins that address 34
vulnerabilities, is the largest since October 2009. With the massive amount of
work that lies ahead, it may help to prioritize your work.
Josh Abraham, Rapid7 Security Researcher, recommends that you pay particular
attention to MS10-054. This vulnerability in the SMB protocol “is potentially
the most dangerous vulnerability as it allows unauthenticated attackers to
execute arbitrary codes on remote machines.” Abrah
4 min
Patch Tuesday
December Microsoft Patch Tuesday Roundup
Time once again for this month's summary of the latest Microsoft Security
updates. NeXpose (including the free NeXpose Community Edition) users will have
coverage within 24 hours or less. Metasploit already had a module for the IE
exposure. Here's the breakdown ...
6 updates, with 12 vulnerabilities covered. Here's the breakdown:
MS09-069: Rated Critical. Potential Denial of Service via ISAKMP through IPsec
affecting LSASS, covering 1 vulnerability: CVE-2009-3675. Important to note that
W
2 min
Patch Tuesday
December Microsoft Patch Tuesday Preview
Sheldon here with a preview of what's coming out in next week's Microsoft Patch
Tuesday …
6 updates in total, covering 12 vulnerabilities. Windows, IE, and Office are
affected.
Bulletin 1: Remote Code Execution affects all supported Windows versions, rated
Important on most, Moderate on XP, and Critical on Server 2008. This will be
the second highest priority out of the Critical updates – particularly if you
have deployed Windows Server 2008.
Bulletin 2: Remote Code Execution doesn't aff
3 min
Microsoft
November Microsoft Patch Tuesday Roundup
Time once again for this month's summary of the latest Microsoft Security
updates …
6 updates, with 15 vulnerabilities covered. Here's the breakdown:
MS09-063: Rated Critical. Potential Remote Code Execution via Memory Corruption
in Web Services on Devices API, covering 1 vulnerability: CVE-2009-2512.
Important to note that this one only affects Windows Vista and Server 2008. Also
important to note that attackers must be on the local subnet to exploit this
vulnerability, so it would either b
4 min
Microsoft
October Microsoft Patch Tuesday Roundup
Time for this month's summary of the latest Microsoft Security updates …
13 advisories, with 34 vulnerabilities covered. Here's the breakdown:
MS09-050: Rated Critical. Potential Remote Code Execution and Denial of Service
in SMBv2, covering 3 vulnerabilities: CVE-2009-2526 (Infinite Loop DoS),
CVE-2009-2532 (Command Value Remote Code Exec), and CVE-2009-3103 (Negotiation
Remote Code Exec). Important to note that this one was listed as a DoS on NVD
while Metasploit and others were insisting
1 min
Microsoft
October Microsoft Patch Tuesday Preview
Wow, because the number of bulletins affecting the number of Windows versions is
pretty staggering. Windows is taking the most lumps this month.
Wow, because Windows7 makes its debut in the monthly dance with 5 updates
(although only the IE update is critical)
Wow, because Bulletin 13 alone affects the following products across the
Microsoft universe:
- Windows 2000 SP4
- Windows XP (SP2 and SP3)
- Windows Server 2003 SP2
- Windows Vista & Vista SP1
- Windows 2008
- Office XP
-