Thursday, January 05, 2012

Security Bulletin Advance Notification for January, 2012


On Tuesday, January 10, 2012, Microsoft is planning to release seven (7) Security Bulletins, of which one bulletin is identified as Critical with the remaining as Important.

The bulletins address vulnerabilities in Microsoft Windows and Microsoft Developer Tools And Software.  Most updates will require a restart to complete the installation.

Note from the Advance Notification that Bulletin 2, identified as Important addresses a "Security Feature Bypass" in Microsoft Windows.  As indicated by the MSRC Blog, Security Feature Bypass (SFB) class issues cannot be leveraged by an attacker.  It is explained that a would-be attacker would use such issues to facilitate use of another exploit.  Further information is expected to be available in the SRD blog following the release of the update.

References




Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...


No comments: