Neowin®

Microsoft has issued a patch, out of its normal security patch cycle, for a critical bug in Internet Explorer versions from 6.0 up to but not including Windows XP Service Pack 2 (SP2). ...

This update resolves several newly discovered public vulnerabilities. Each vulnerability is documented in this bulletin in its own Vulnerability Details section. If a user is logged on with administrative privileges, an attacker who...

Issued: February 2, 2004 - Updated: February 9, 2004 - Version Number: 1.4 Known Issues: Installing this Security Update will invalidate the usernames and passwords stored in Internet Explorer's protected store. This...

Overview Security issues identified in Microsoft Internet Explorer could allow an attacker to compromise systems with Internet Explorer installed (even if Internet Explorer is not used as the Web browser). For example, an attacker...

Security issues identified in Microsoft Internet Explorer (IE) could allow an attacker to compromise systems with IE installed (even if IE is not used as the Web browser). For example, an attacker could run programs...

On the 20th August Microsoft issued the Cumulative Patch MS03-032 for Internet Explorer. It dealt with several issues: A vulnerability that involves the Internet Explorer cross-domain security modelA vulnerability that occurs because Internet Explorer does...

Who should read this bulletin: System administrators using Microsoft® SQL Server™ 7.0, SQL Server 2000, Microsoft Data Engine (MSDE) 1.0, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) and SQL Server 2000 Desktop Engine (Windows)....

This is a cumulative patch that includes the functionality of all previously released patches for Internet Explorer 5.01, 5.5 and 6.0. In addition, it eliminates two newly discovered vulnerabilities: A buffer overrun vulnerability that...

Microsoft has released a cumulative patch for Internet Information Server (IIS) 4.0, Internet Information Services (IIS) 5.0, and IIS 5.1. This patch includes the functionality of all security patches that have been released for IIS...

Thanks xStainDx. Two security issues have been identified that could allow an attacker to compromise a computer running Microsoft BizTalk Server. This issue only affects computers configured as servers that are also running Microsoft BizTalk...

April 2003, Cumulative Patch for Internet Explorer (813489) The "April 2003, Cumulative Patch for Internet Explorer" eliminates all previously addressed security vulnerabilities affecting Internet Explorer, as well as additional newly discovered vulnerabilities. This update...

Overview An identified security issue could enable an attacker to read files or run programs on a computer that visited his or her Web site. By installing this update, you can help protect your...

This is an updated bulletin describing a cumulative patch for Internet Explorer 5.5 and 6.0. The original patch released on December 4, 2002 is unchanged. However since releasing the patch, Microsoft has received a report...

This is a cumulative patch for Internet Explorer 5.5 and 6.0. In addition to including the functionality of all previously released patches for Internet Explorer 5.5 and 6.0, it also eliminates a newly discovered flaw...

Impact of vulnerability: Six new vulnerabilities, the most serious of which could enable an attacker to execute commands on a user's system. Maximum Severity Rating: Important Recommendation: Customers should install the...

Date: 30 October 2002 Software: Internet Information Service (IIS) Impact: Four vulnerabilities, the most serious of which could enable applications on a server to gain system-level privileges. Max Risk: Moderate ...

This is a cumulative patch that includes the functionality of all previously released patches for IE 5.01, 5.5 and 6.0. In addition, it eliminates the following six newly discovered vulnerabilities: A buffer overrun vulnerability affecting...

This is a cumulative patch that includes the functionality of all previously released patches for SQL Server 7.0 and SQL Server 2000. In addition, it eliminates a newly discovered vulnerability. SQL Server 7.0...

Yesterday late I received a link to the latest Cumulative Patch for Internet Explorer (August release) these packages generally bundle all the latest vulnerabilities into one big fix (that usually isn't big) It was so...

This patch eliminates two newly discovered vulnerabilities affecting SQL Server 2000 and MSDE 2000: A buffer overrun vulnerability that occurs in several Database Consistency Checkers (DBCCs) that ship as part of SQL Server 2000. DBCCs...

On June 26, 2002, Microsoft released the original version of this bulletin, which described the patch it provided as being cumulative. We subsequently discovered that a file had been inadvertently omitted from the patch....

This is a cumulative patch that includes the functionality of all previously released patches for SQL Server 2000. In addition, it eliminates three newly discovered vulnerabilities affecting SQL Server 2000 and MSDE 2000 (but not...

Thanks xStainDx and RobertH for the heads up. You know, for some reason, I can never beat xStainDx into posting the Security Bulletin update first, it makes me wonder... :P Date: 26...

Thanks Andrew Hodes & Andrew Ebbaston for their emails and to xStainDx for posting on the forums. This update eliminates all previously addressed security vulnerabilities, as well as 6 newly discovered vulnerabilities, the...

Thanks to AaronXP for posting this info in the forums. Recommendation: Consumers using IE 5.01, 5.5 and 6 should install the patch immediately. Maximum Severity Rating: Critical ...

Thanks configure for sending this in, This update resolves the "Cookie Data in IE Can Be Exposed or Altered Through Script Injection" security vulnerability in Internet Explorer 6.0, and is discussed in Microsoft Security Bulletin...