Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Dark Black Tuesday Coming Up: 17 Microsoft Bulletins - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Dark Black Tuesday Coming Up: 17 Microsoft Bulletins

Microsoft got big plans for everybody for next Tuesday, and I hope you haven't made any dinner plans because you will be busy patching (or working with your old friends like WSUS to get the patches tested and released).

A total of 17 Bulletins are going to be released according to Microsoft's pre-release. 9 bulletins are rated critical and 8 are rated important. It pretty much affects the usual suspects (Windows, Internet Explorer and Office) as well as some less regular guest starts like Microsoft's developer tools.

The critical patches apply pretty much to all versions of Windows (XP, Vista, Windows 7 and 2008) with one or two exceptions.


Johannes B. Ullrich, Ph.D.
SANS Technology Institute

I will be teaching next: Application Security: Securing Web Apps, APIs, and Microservices - SANSFIRE 2022


4511 Posts
ISC Handler
Apr 8th 2011
The 17 bulletins cover 64 vulnerabilities according to ZDNET. I predict april showers of malware. It sounds like there are already 0-days attacks in the wild for the MHTML vulnerability. (Microsoft Security Advisory 2501696)

8 Posts
Not that the federal government patches immediately but this could be interesting if there is no one to patch systems for a week, two... who knows. I've already been told I "have not been identified as excepted " :(
7 Posts
Anyone else getting a page not found error when clicking on the April 2011 ANS link from the Microsoft RSS feed at ?
12 Posts

Sign Up for Free or Log In to start participating in the conversation!