Previous
Microsoft patches 'important' XP, Windows Server 2003 flaw
News The patch released on Tuesday by Microsoft to fix the new flaw also makes two other changes designed to make Windows more secure. The patch is posted to the company's security Web site, as is a bulletin outlining the flaw.
[May 12, 2004, 8:35]
Windows Server 2003 gets first security patch
News Less than two months after launching its Windows Server 2003 operating system, Microsoft has released a security patch to fix a vulnerability that could let malicious sites run damaging code on the server.
[June 4, 2003, 22:29]
Microsoft fixes 20 flaws with Patch Tuesday updates
News Microsoft is now sharing the technical details of new vulnerabilities in advance of so-called 'Patch Tuesday', to give software developers a chance to update affected products before the public announcement.
[October 15, 2008, 11:01]
Microsoft patches Excel, Windows, Word flaws
News Microsoft on Tuesday closed security holes in Excel, Windows and Word that had been exploited in the wild, as well as other holes for which exploit code or details exist, all as part of its monthly patch update cycle.
[April 15, 2009, 8:22]
Microsoft plugs critical holes in Windows
News The patch for Windows 2000, XP, Vista, Server 2003 and Server 2008 plugs a vulnerability (MS09-006) that affects images created with the Enhanced MetaFile (EMF) or Windows MetaFile (WMF) display formats, according to Microsoft's advisory.
[March 11, 2009, 8:03]
Tackling Microsoft's August patches: Part 2
News Microsoft released so many critical security bulletins for August's Patch Tuesday that I couldn't address them all immediately. The updates collectively fix 20 flaws in Windows and patch three flaws in Office.
[August 22, 2006, 13:10]
Microsoft to fix critical Windows holes
News Microsoft will issue fixes for five critical vulnerabilities affecting Windows and a variety of other software on Patch Tuesday next week. On 27 July, Microsoft made the rare move of issuing a security patch outside of its regular monthly cycle, to...
[August 7, 2009, 13:18]
Microsoft rolls out record Patch Tuesday fixes
News The update includes a patch for an important hole in its IIS Web server product that Microsoft reported in May. Microsoft has released 10 security updates fixing a record number of Patch Tuesday holes, including one for a critical hole in Internet...
[June 10, 2009, 8:37]
DoS flaw extends across Windows range
News Microsoft said it is working on a patch, but noted that it is not aware of any attacks that try to exploit the vulnerability. Until a patch is available, Microsoft suggests users block TCP port 3389 (the port used by RDP) on their firewall, disable...
[July 19, 2005, 9:25]
Microsoft issues alert on three 'critical' flaws
News The software giant released a cumulative patch for Internet Explorer that fixes several vulnerabilities previously disclosed by the company, and it re-released an advisory for Microsoft's SQL Server software, warning that a flaw in that program...
[August 21, 2003, 8:45]
Microsoft delivers new patching tools
News This takes care of a problem with Microsoft's older Windows Update, SMS and MBSA products, which sometimes gave different results when scanning systems for patch requirements. The new version includes improvements in patch delivery, status...
[June 8, 2005, 9:15]
Microsoft's five critical security bulletins for July
News For July's Patch Tuesday, Microsoft released seven security bulletins, five of which it has rated critical. In addition to the rather esoteric threats we often see on Patch Tuesday, this month's batch includes multiple critical flaws in Office...
[July 24, 2006, 13:30]
Major Windows flaw patched
News Microsoft on Tuesday issued an "important" Windows security fix as part of its monthly patch cycle, tackling a script injection vulnerability that could allow an attacker to take over a PC. The software giant also published two early alerts as part...
[May 11, 2005, 9:35]
Microsoft warns again on Windows
News Microsoft also announced the availability of a cumulative patch -- rated "important" -- that fixes new and previously reported vulnerabilities in the company's SQL Server software. Toulouse said there are no known exploits of the flaw, which was...
[July 24, 2003, 7:40]
Microsoft on alert for worm attack
News The release of the attack code, which exploits a security hole in a Windows component related to file and printer sharing, also raises the urgency to patch. Users are encouraged to avoid delay in applying this security patch," the Department of...
[August 14, 2006, 9:40]
Get the details on Microsoft's June security bulletins
News However, the software giant's Patch Tuesday overshadowed this momentous news — at least for those of us in the security world, who spent our time updating Microsoft programs. For June's Patch Tuesday, Microsoft released 12 security bulletins...
[June 20, 2006, 12:45]
Attackers target Windows DNS flaw
News The company's next "Patch Tuesday" is on 8 May, although if attacks increase a patch could be released out of that cycle. The attacks target Windows 2000 Server and Windows Server 2003 systems through a hole in the Domain Name System (DNS) service...
[April 13, 2007, 9:13]
Microsoft smoothes out patch flaws
News One of the problems, in security bulletin MS06-034, led some people to be repeatedly offered the same patch via Microsoft's update delivery tools, the software company said. The MS06-034 patch was delivered last week as part of Microsoft's monthly...
[July 20, 2006, 9:55]
Microsoft exposes serious IE vulnerability
News The rest of the advisory's advice is virtually useless: Microsoft reminds users to keep systems updated with the most recent security patches — and yet, no patch is available for this threat. Microsoft didn't consider it serious enough to patch.
[November 29, 2005, 16:45]
Windows image-handling flaw lets in attackers
News Two of them could allow a remote intruder to gain complete control over a Windows PC, Microsoft warned in the bulletin, the sole one in its monthly patch cycle. People who have signed up for Microsoft's update service should receive the patch...
[November 9, 2005, 9:10]
