MS10-045: Vulnerability in Microsoft Office Outlook could allow remote code execution

Resolves a security vulnerability that exists in Outlook that could allow remote code execution if a user opens an attachment in a specially crafted email message by using an affected version of Outlook.INTRODUCTIONMicrosoft has released security bulletin MS10-045. To view the complete security...

MS12-034: Description of the security update for Office 2010: May 8, 2012

Resolves security vulnerabilities that exist in Microsoft Office 2010 that could allow arbitrary code to run when a maliciously modified file is opened.IntroductionMicrosoft has released security bulletin MS12-034. To view the complete security bulletin, visit one of the following Microsoft...

MS12-030: Description of the security update for Excel 2010: May 8, 2012

Describes the security update for Excel 2010 that was released on May 8, 2012.INTRODUCTIONMicrosoft has released security bulletin MS12-030. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

MS12-035: Vulnerabilities in the .NET Framework could allow remote code execution: May 8, 2012

Resolves a vulnerability in the .NET Framework that could allow remote code execution on a client system if a user views a specially crafted webpage by using a web browser that can run XAML Browser Applications XBAPs.IntroductionMicrosoft has released the security bulletin MS12-035. You can view...

MS12-030: Vulnerabilities in Microsoft Excel could allow remote code execution: May 8, 2012

Describes the update that fixes vulnerabilities in Microsoft Excel that could allow for remote code execution. This update was released on May 8, 2012.INTRODUCTIONMicrosoft has released security bulletin MS12-030 view the complete security bulletin, visit one of the following Microsoft websites:...

MS12-034: Combined Security Update for Microsoft Office, Windows, .NET Framework, and Silverlight: May 8, 2012

Resolves a vulnerability in the .NET Framework and Silverlight that could allow remote code execution on a client system if a user views a specially crafted webpage by using a web browser that can run Silverlight applications or XAML Browser Applications XBAPs.IntroductionMicrosoft has released t...

Description of the update for Lync 2010: March 2012

Describes the issues that are fixed in the March 2012 update for Lync 2010.SummaryThis article describes the update for Microsoft Lync 2010 that is dated March 2012.This article describes the following items about the update package:The issues that the update package fixes.The prerequisites for...

Description of the update for Lync Server 2010: March 2012

Describes the update for Lync Server 2010 that is dated March 2012.SummaryThis article describes the update for Microsoft Lync Server 2010 that is dated March 2012. This article describes the following items about the update package:The issues that the update package fixes.The prerequisites for...

MS12-027: Description of the security update for Microsoft Commerce Server 2009: April 10, 2012

Describes the security update for Microsoft Commerce Server 2009 that was released on April 10, 2012.INTRODUCTIONMicrosoft has released security bulletin MS12-027. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

MS12-027: Description of the security update for Visual Basic 6: April 10, 2012

Describes the security update for Visual Basic 6 that was released on April 10, 2012.INTRODUCTIONMicrosoft has released security bulletin MS12-027. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

MS12-027: Description of the security update for 2007 Microsoft Office system: April 10, 2012

Resolves a vulnerability in MSCOMCTL.OCX could allow remote code execution in Office 2010. This was released on April 10, 2012.INTRODUCTIONMicrosoft has released security bulletin MS12-027. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

MS12-023: Cumulative Security Update for Internet Explorer: April 10, 2012

Resolves vulnerabilities in Internet Explorer that could allow remote code execution if a user views a specially crafted webpage by using Internet Explorer.INTRODUCTIONThe update that this article describes has been replaced by a newer update. To resolve this problem, install the most current...

MS12-025: Vulnerabilities in the .NET Framework could allow remote code execution: April 10, 2012

Resolves a vulnerability in the .NET Framework that could allow remote code execution on a client system if a user views a specially crafted webpage by using a web browser that can run XAML Browser Applications XBAPs.Important In response to customer feedback that we received after the original...

MS12-027: Vulnerability in MSCOMCTL.OCX could allow Remote Code Execution: April 10, 2012

Resolves a vulnerability in MSCOMCTL.OCX could allow Remote Code Execution. This was released on April 10, 2012.INTRODUCTIONMicrosoft has released security bulletin MS12-027. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

A DTMF-based IVR application that is developed by using Lync Server 2010, UCMA 3.0 Workflow APIs crashes

Fixes an issue in which a DTMF-based IVR application crashes when a user barges-in multiple times with invalid DTMF digits or barges-in to request help. This issue occurs if the application is developed by using Lync Server 2010, UCMA 3.0 Workflow APIs.SymptomsConsider the following scenario: You...

Description of the update package for Lync Server 2010, Web Components Server: March 2012

Describes the update for Lync Server 2010, Web Components Server that is dated March 2012.SummaryThis article describes the update for Microsoft Lync Server 2010, Web Components Server that is dated March 2012. INTRODUCTIONThis update improves the reliability, stability and performance of Lync...

MS12-017: Vulnerability in DNS Server could allow denial of service: March 13, 2012

None None...

MS12-020: Description of the security update for Terminal Server Denial of Service Vulnerability: March 13, 2012

None None...

MS12-021: Vulnerability in Visual Studio could allow elevation of privilege: March 13, 2012

Resolves security vulnerabilities that exist in Visual Studio that could allow arbitrary code to run when a maliciously modified add-in is added in the path used by Visual Studio.IntroductionMicrosoft has released security bulletin MS12-021. You can view the complete security bulletin by visiting...

MS12-022: Vulnerability in Expression Design could allow remote code execution: March 13, 2012

Resolves a vulnerability in Expression Design that could allow remote code execution. This update was released on March 13, 2012.INTRODUCTIONMicrosoft has released security bulletin MS12-022. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

MS12-020: Vulnerabilities in Remote Desktop could allow remote code execution: March 13, 2012

Resolves vulnerabilities that could allow remote code execution if an attacker sends a sequence of specially crafted RDP packets to an affected system. By default, the Remote Desktop Protocol RDP is not enabled on any Windows operating system. Systems that do not have RDP enabled are not at...

MS12-009: Vulnerabilities in Ancillary Function driver could allow elevation of privilege: February 14, 2012

None None...

MS12-012: Vulnerability in Color Control Panel could allow remote code execution: February 14, 2012

None None...

MS12-011: Vulnerabilities in Microsoft SharePoint could allow elevation of privilege: February 14, 2012

Describes the bulletin that resolves vulnerabilities in Microsoft SharePoint could allow information disclosure that was released on February 14, 2012.INTRODUCTIONMicrosoft has released security bulletin MS12-011. To view the complete security bulletin, visit one of the following Microsoft...

MS12-015: Vulnerabilities in Microsoft Visio Viewer 2010 could allow remote code execution: February 14, 2012

Resolves security vulnerabilities that exist in Visio Viewer 2010 that could allow arbitrary code to run when a maliciously modified file is opened.IntroductionMicrosoft has released security bulletin MS12-015. To view the complete security bulletin, visit one of the following Microsoft websites:...

MS12-016: Vulnerabilities in the .NET Framework and Microsoft Silverlight could allow remote code execution: February 14, 2012

Resolves a vulnerability in the .NET Framework and Microsoft Silverlight that could allow remote code execution on a client system if a user views a specially crafted webpage by using a web browser that can run Silverlight applications or XAML Browser Applications XBAPs.IntroductionMicrosoft has...

Description of the update for Lync Server 2010, Web Components Server: December 2011

Describes the update for Lync Server 2010, Web Components Server that is dated December 2011.SummaryThis article describes the update for Microsoft Lync Server 2010, Web Components Server that is dated December 2011. ResolutionMicrosoft Download CenterThe following file is available for download...

Description of the update for Lync Server 2010 Bandwidth Policy Service: December 2011

Describes the update for Lync Server 2010 Bandwidth Policy Service that is dated December 2011.SummaryThis article describes the update for Microsoft Lync Server 2010 Bandwidth Policy Service that is dated December 2011.INTRODUCTIONIssues that this update fixesThis update fixes the following...

MS12-003: Vulnerability in Windows client/server run-time subsystem could allow elevation of privilege: January 10, 2012

None None...

MS12-001: Vulnerability in Windows Kernel could allow security Feature bypass: January 10, 2012

None None...

MS12-007: Vulnerability in Anti-XSS Library could allow information disclosure: January 10, 2012

Resolves a vulnerability in the Microsoft Anti-Cross Site Scripting Anti-XSS Library that could allow information disclosure if an attacker passes a malicious script to a website that uses the sanitization function of the Anti-XSS Library.INTRODUCTIONMicrosoft has released security bulletin...

MS12-004: Vulnerabilities in Windows Media could allow remote code execution: January 10, 2012

Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if a user opens a specially crafted media file. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the local user.IntroductionMicrosoft has released security bulletin...

MS12-006: Vulnerability in SSL/TLS could allow information disclosure: January 10, 2012

Resolves a vulnerability in SSL/TLS could allow information disclosure。INTRODUCTIONMicrosoft has released security bulletin MS12-006. To view the complete security bulletin, go to one of the following Microsoft websites: Home...

MS12-006: Description of the security update for Webio, Winhttp, and schannel in Windows: January 10, 2012

None None...

MS11-100: Vulnerability in the .NET Framework could allow elevation of privilege: December 29, 2011

This article contains details for the ASP.NET update for the .NET Framework.IntroductionMicrosoft has released security bulletin MS11-100. To view the complete security bulletin, visit one of the following Microsoft websites:Home...

Description of the update for Lync Server 2010: December 2011

Describes the update for Lync Server 2010 that is dated December 2011.SummaryThis article describes the update for Microsoft Lync Server 2010 that is dated December 2011. ResolutionMicrosoft Download CenterThe following file is available for download from the Microsoft Download Center:Download th...

MS11-088: Vulnerability in Microsoft Office IME (Chinese) could allow elevation of privilege: December 13, 2011

Resolves security vulnerabilities that exist in Microsoft Office Pinyin IME Chinese that could allow arbitrary code to run when a maliciously modified file is opened.IntroductionMicrosoft has released security bulletin MS11-088. To view the complete security bulletin, visit one of the following...

MS11-087: Vulnerability in Windows kernel-mode drivers could allow remote code execution: December 13, 2011

None None...

MS11-095: Description of the security update for Active Directory: December 13, 2011

None None...

MS11-095: Vulnerability in Active Directory could allow remote code execution: December 13, 2011

Resolves a vulnerability in Active Directory that could allow remote code execution.INTRODUCTIONMicrosoft has released security bulletin MS11-095. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

MS11-092: Vulnerability in Windows Media could allow remote code execution: December 13, 2011

Resolves a vulnerability in Windows Media Player and Windows Media Center that could allow remote code execution if a user opens a specially crafted Microsoft Digital Video Recording .dvr-ms file.INTRODUCTIONMicrosoft has released security bulletin MS11-092. To view the complete security bulletin...

MS11-089: Description of the security update for Visio 2010: December 13, 2011

Describes the security update for Microsoft Visio 2010 that was released on December 13, 2011.INTRODUCTIONMicrosoft has released security bulletin MS11-089. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

MS11-084: Vulnerability in Windows kernel-mode drivers could allow denial of service: November 8, 2011

Resolves a vulnerability in Microsoft Windows that could allow Denial of Service if a user navigates to a specially crafted TrueType font on a network share.INTRODUCTIONMicrosoft has released security bulletin MS11-084. To view the complete security bulletin, visit one of the following Microsoft...

MS11-086: Vulnerability in Active Directory could allow elevation of privilege: November 8, 2011

Resolves a vulnerability in Active Directory that could allow elevation of privilege.INTRODUCTIONMicrosoft has released security bulletin MS11-086. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

MS11-086: Description of the security update for Active Directory: November 8, 2011

None None...

MS11-075: Vulnerability in Microsoft Active Accessibility could allow remote code execution: October 11, 2011

Resolves a vulnerability in the Microsoft Active Accessibility component that could allow remote code execution if an attacker convinces a user to open a legitimate file that is located in the same network directory as a specially crafted dynamic link library DLL file.INTRODUCTIONMicrosoft has...

MS11-076: Vulnerability in Windows Media Center could allow remote code execution: October 11, 2011

Resolves a vulnerability in Windows Media Center that could allow remote code execution if an attacker convinces a user to open a legitimate file that is located in the same network directory as a specially crafted dynamic link library DLL file.INTRODUCTIONMicrosoft has released security bulletin...

MS11-082: Vulnerabilities in Host Integration Server could allow denial of service: October 11, 2011

Resolves vulnerabilities in Host Integration Server that could allow denial of service if a remote attacker sent specially crafted network packets to a Host Integration Server listening on UDP port 1478 or TCP ports 1477 and 1478.INTRODUCTIONMicrosoft has released security bulletin MS11-082. To...

MS11-079: Vulnerabilities in Microsoft Forefront Unified Access Gateway could cause remote code execution: October 11, 2011

Resolves vulnerabilities in Microsoft Forefront Unified Access Gateway that could cause remote code execution and that was released on October 11, 2011.INTRODUCTIONMicrosoft has released security bulletin MS11-079. To view the complete security bulletin, visit the following Microsoft website: IT...

MS11-074: Description of the security update for SharePoint Server 2010 (dlc): September 13, 2011

Resolves a security vulnerability in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened.INTRODUCTIONMicrosoft has released security bulletin MS11-074. To view the complete security bulletin, visit one of the following Microsoft...