As part of today’s Patch Day, Microsoft released a security bulletin describing three new security vulnerabilities that affect Internet Explorer (IE) 9.0, running on Windows Vista, 7, and Server 2008.
It’s Microsoft Patch Day and I have a question for you. How quick are you at applying software updates? Do you jump on them within the day; a week, or are you months behind?
Those hip to the patch cycle know the first Thursday of the month means an early peek at Microsoft’s plans for Patch Tuesday.
SQL Server is Microsoft’s popular database server. It includes the SQL Server Reporting Services (SSRS), which provides web-based access to the SQL Server Report Manager.
Like clockwork, Microsoft’s Patch Tuesday has gone live. This month Microsoft seems to be focusing on Office and their Server Software, with the Windows updates posing only a moderate risk.
After a very light Patch Tuesday in September, Microsoft returns to more typical patch levels this month. According to their October advanced notification, Microsoft plans to release seven security bulletins next week, fixing around 20 vulnerabilities in some of their most popular products. The affect products include Windows, Office, SQL Server, Microsoft Server Software, and a few other products. Microsoft only rated one of the bulletins as Critical, and the rest as Important.
Today, Microsoft released two security bulletins describing a pair of cross-site scripting (XSS) vulnerabilities in their Server software and development tools. They rate both updates as Important. The bulletins specifically affect.
As I mentioned in last week’s early warning, today’s Patch Day is extremely light with only two updates. According to their September bulletin summary, Microsoft has only released updates for Visual Studio Foundation Server and System Center Configuration Manager. Both updates fix cross-site scripting (XSS) vulnerabilities that Microsoft rates as Important.
Though I cover four stories in this week’s security recap video, one incident far outweighed all the others this week. If you use Java—and almost everyone does—you’ll want to check out today’s episode.
I’ve posted today’s weekly security news summary video a bit late, due to some work travel that got in the way of production, but better late than never right? If you’re interested in the biggest information security stories from the week, you’re at the right place.