Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Black Tuesday advanced notification SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Black Tuesday advanced notification

The advanced notification for next Tuesday's Microsoft patches are out (http://technet.microsoft.com/en-us/security/bulletin/ms13-aug) 3 Critical and 5 Important ones are listed.  One affects every version of Internet explorer.  The rest are sprinkled between server and desktop, including RT. 

With 8 bulletins it might be an easy day (assuming that didn't just jinx it). 

Keep an eye out for our usual black Tuesday diary next week.  

Mark H - Shearwater

 

Mark

391 Posts
ISC Handler
Critical Exchange Server RCE stands out to me and could impact a patch release schedule depending the exploit... either way, never dull!

Critical Bulletin 3
- Affected Software:
- Microsoft Exchange Server 2007 Service Pack 3
- Microsoft Exchange Server 2010 Service Pack 2
- Microsoft Exchange Server 2010 Service Pack 3
- Microsoft Exchange Server 2013 Cumulative Update 1
- Microsoft Exchange Server 2013 Cumulative Update 2
- Impact: Remote Code Execution
- Version Number: 1.0
Anonymous

Sign Up for Free or Log In to start participating in the conversation!