MS Sec Notification mailing list archives

Microsoft Security Advisory Notification

From: "Microsoft" <securitynotifications () e-mail microsoft com>
Date: Tue, 09 Sep 2014 11:22:02 -0600

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

********************************************************************
Title: Microsoft Security Advisory Notification
Issued: September 9, 2014
********************************************************************

Security Advisories Updated or Released Today
==============================================
* Microsoft Security Advisory (2755801)
  - Title: Update for Vulnerabilities in Adobe Flash Player in
    Internet Explorer
  - https://technet.microsoft.com/library/security/2755801
  - Revision Note: V28.0 (September 9, 2014): Added the 2987114 
    update to the Current Update section.

* Microsoft Security Advisory (2871997)
  - Title: Update to Improve Credentials Protection and Management
  - https://technet.microsoft.com/library/security/2871997
  - Revision Note: V3.0 (September 9, 2014): Rereleased advisory to
    announce the release of update 2982378 to provide additional 
        protection for usersâ credentials when logging into a Windows 7
        or Windows Server 2008 R2 system. See Updates Related to this
        Advisory for details.

* Microsoft Security Advisory (2905247)
  - Title: Insecure ASP.NET Site Configuration Could Allow Elevation 
    of Privilege
  - https://technet.microsoft.com/library/security/2905247
  - Revision Note: V2.0 (September 9, 2014): Advisory rereleased to
    announce the offering of the security update via Microsoft
        Update, in addition to the Download-Center-only option that was
        provided when this advisory was originally released.
        Additionally, some of the updates were reissued to improve their
        quality. See the Update FAQ for details.


Other Information
=================

Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing 
a Microsoft security update, it is a hoax that may contain 
malware or pointers to malicious websites. Microsoft does 
not distribute security updates via email. 

The Microsoft Security Response Center (MSRC) uses PGP to digitally 
sign all security notifications. However, PGP is not required for 
reading security notifications, reading security bulletins, or 
installing security updates. You can obtain the MSRC public PGP key
at <https://technet.microsoft.com/security/dn753714>.

********************************************************************
THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING
LIMITATION MAY NOT APPLY.
********************************************************************

Microsoft respects your privacy. Please read our online Privacy
Statement at <http://go.microsoft.com/fwlink/?LinkId=81184>.

If you would prefer not to receive future technical security
notification alerts by email from Microsoft and its family of
companies please visit the following website to unsubscribe:
<https://profile.microsoft.com/RegSysProfileCenter/subscriptionwizar
d.aspx?wizid=5a2a311b-5189-4c9b-9f1a-d5e913a26c2e&%3blcid=1033>.

These settings will not affect any newsletters you've requested or
any mandatory service communications that are considered part of
certain Microsoft services.

For legal Information, see:
<http://www.microsoft.com/info/legalinfo/default.mspx>.

This newsletter was sent by:
Microsoft Corporation
1 Microsoft Way
Redmond, Washington, USA
98052

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 10.2.0 (Build 1950)
Charset: utf-8
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=rlvO
-----END PGP SIGNATURE-----

Current thread:

Microsoft Security Advisory Notification Microsoft (Jul 08)
- <Possible follow-ups>
- Microsoft Security Advisory Notification Microsoft (Jul 10)
- Microsoft Security Advisory Notification Microsoft (Jul 17)
- Microsoft Security Advisory Notification Microsoft (Jul 29)
- Microsoft Security Advisory Notification Microsoft (Aug 12)
- Microsoft Security Advisory Notification Microsoft (Sep 09)
- Microsoft Security Advisory Notification Microsoft (Sep 23)