Microsoft announced their June 2013 advanced notification for Patch Tuesday. The June edition of Patch Tuesday will be bringing five security bulletins.

Security Bulletin Breakdown:

1 bulletins are rated as Critical
4 bulletins are rated as Important

Vulnerability Impact:

2 bulletins address vulnerabilities that could lead to Remote Code Execution
1 bulletins address vulnerabilities that could lead to Elevation of Privilege
1 bulletin addresses a vulnerability that could lead to Information Disclosure
1 bulletin addresses a vulnerability that could lead to a Denial of Service attack

Affected Products:

All Internet Explorer versions
All supported Windows Operating Systems
Office 2003 SP3

I will be going over the Microsoft and 3rd Party releases …

Microsoft announced their April 2013 advanced notification for Patch Tuesday.  The April edition of Patch Tuesday will be bringing nine security bulletins.

Security Bulletin Breakdown:

2 bulletins are rated as Critical
7 bulletins are rated as Important
2 bulletins address vulnerabilities that could lead to Remote Code Execution
5 bulletins address vulnerabilities that could lead to Elevation of Privilege
1 bulletin addresses a vulnerability that could lead to Information Disclosure
1 bulletin addresses a vulnerability that could lead to a Denial of Service attack

Affected Products:

All Internet Explorer versions
All supported Windows Operating Systems
InfoPath 2010 SP1
SharePoint Server 2010 SP1
Groove Server 2010 SP1
Office Web Apps 2010 SP1
SharePoint Foundation 2010 SP1

I …

In addition to our Patch Tuesday Webinar we are starting a few new Webinar series.  These are as follows:

vCenter Protect Demonstration – This webinar series is intended to provide a basic overview of the vCenter Protect features for customers evaluating the product.  Each demonstration will be followed by Q&A with the host and is a great way to get a quick introduction to the Protect product.

vCenter Protect Tech Talk – This webinar series is intended to provide focused feature demonstrations.  Each Tech Talk will focus on a specific feature or scenario to provide Protect users with guidance on …

This week New York gets hammered with snow and IT Admins get hammered with patches.  Microsoft has released 12 new security bulletins addressing 55 vulnerabilities.  The number of vulnerabilities this month comes very close to the record 64 vulnerabilities resolved in the April 2011 Patch Tuesday.

Of the 12 bulletins released this Patch Tuesday, 5 are critical.  MS13-009 and MS13-010 affecting Internet Explorer, MS13-011 and MS13-020 affecting the Windows Operating System, and MS13-012 affecting Exchange Server.

The first browser patch this month is MS13-009.  This is a cumulative security update covering 13 of the reported vulnerabilities and should be a …

Happy New Year.  I hope IT administrators got some much needed patching rest over the past couple of weeks.  2013 is started out quite heavy in the world of patching.

This week was highlighted by a busy Patch Tuesday.  You can read my write up on the January 2013 edition of Patch Tuesday here.

There were also other vendors releasing critical security bulletins on Patch Tuesday.  Adobe released two security bulletins.  APSB13-02 was pre-announced last Thursday as a part of their quarterly update for Adobe Acrobat and Adobe Reader.  Adobe Acrobat / Reader versions 9.5.3 / 10.1.5 / …

To ring in the New Year, today Microsoft has released seven new security bulletins addressing 12 vulnerabilities.

However, the most notable headline from this Patch Tuesday is a security bulletin that was not released.  On December 29, 2012, Microsoft released a security advisory (2794220) informing administrators of a vulnerability in Internet Explorer was currently being exploited.  Microsoft provided a non-security update to prevent exploitation to that vulnerability.  Recently, security researchers have found a way to bypass this temporary fix to carry out an attack on the vulnerability.  As we continue to wait for a security bulletin for …

Patching quietly came to an end for 2012, and 2013 is starting off with a bang.  Here is a quick recap of the happenings in patch management this first week of the New Year:

On Wednesday, a new version of CDBurnerXP was released with version 4.5.0.3717.  This new version is a non-security update.  On Friday, Google released a non-security update for their Picasa program with version 3.9.136.120.

Microsoft announced their January 2013 Patch Tuesday Advance Notification.  You can read my write up here on the upcoming Patch Tuesday notification details.  In addition to the seven Microsoft …

To ring in the New Year, Microsoft has announced their January 2013 advanced notification for Patch Tuesday.  The January 2013 edition of Patch Tuesday will be bringing seven security bulletins addressing 12 vulnerabilities.

Security Bulletin Breakdown:

2 bulletins are rated as Critical
5 bulletins are rated as Important
2 bulletins addressing vulnerabilities that could lead to Remote Code Execution
3 bulletins addressing vulnerabilities that could lead to Elevation of Privilege
1 bulletin addressing a vulnerability that could lead to Security Feature Bypass
1 bulletin addressing a vulnerability that could lead to Denial of Service

Affected Products:

All supported Microsoft operating systems
Microsoft Office 2003, 2007
Microsoft Word Viewer
Microsoft Office …

This week in patching was highlighted by Microsoft’s December 2012 Patch Tuesday.  Microsoft released seven security bulletins addressing 12 vulnerabilities.  You can read my full write up on Patch Tuesday here.

On the non-Microsoft front, Adobe released an update for their Adobe Flash Player and Air products.  Adobe Security Bulletin APSB12-27 addresses three vulnerabilities as is rated as Critical.  Adobe has started the trend of releasing security updates for Flash Player on Microsoft’s Patch Tuesday.  This trend will probably continue as Microsoft and Google both bundle Adobe Flash Player in their latest browsers.

On that note, Microsoft released …

For December 2012 Patch Tuesday, Microsoft has released seven new security bulletins addressing 12 vulnerabilities.  This month’s Patch Tuesday is affects every Microsoft operating system and every supported version of Microsoft Internet Explorer.  All machines on an administrator’s network will need to be patched this month.

There are two security bulletins that will need to be addressed right away.  First, Microsoft security bulletin MS12-077 addresses three vulnerabilities in all supported versions of Microsoft Internet Explorer.  Navigating to a malicious website in an unpatched browser can result in Remote Code Execution.  With any Internet browser, it is important …