No Image

4056318 – Guidance for securing AD DS account used by Azure AD Connect for directory synchronization – Version: 1.0

2017-12-13 KENNETH 0

4056318 – Guidance for securing AD DS account used by Azure AD Connect for directory synchronization – Version: 1.0 Revision Note: V1.0 (December 12, 2017): Advisory published.Summary: Microsoft is releasing this security advisory to provide information regarding security settings for the AD DS (Active Directory Domain Services) account used by Azure AD Connect for directory synchronization. This advisory also provides guidance on what on-premises AD administrators can do to ensure that the account is properly secured. Source: 4056318 – Guidance for securing AD DS account used by Azure AD Connect for directory synchronization – Version: 1.0

No Image

4053440 – Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields – Version: 1.0

2017-11-09 KENNETH 0

4053440 – Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields – Version: 1.0 Revision Note: V1.0 (November 8, 2017): Advisory published.Summary: Microsoft is releasing this security advisory to provide information regarding security settings for Microsoft Office applications. This advisory provides guidance on what users can do to ensure that these applications are properly secured when processing Dynamic Data Exchange (DDE) fields. Source: 4053440 – Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields – Version: 1.0

No Image

MS14-085 – Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) – Version: 1.1

2017-10-20 KENNETH 0

MS14-085 – Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) – Version: 1.1 Severity Rating: ImportantRevision Note: V1.1 (October 19, 2017): Corrected a typo in the CVE description.Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow information disclosure if a user browses to a website containing specially crafted JPEG content. An attacker could use this information disclosure vulnerability to gain information about the system that could then be combined with other attacks to compromise the system. The information disclosure vulnerability by itself does not allow arbitrary code execution. However, an attacker could use this information disclosure vulnerability in conjunction with another vulnerability to bypass security features such as Address Space Layout Randomization (ASLR). Source: MS14-085 – Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) – Version: 1.1

No Image

4038556 – Guidance for securing applications that host the WebBrowser Control – Version: 1.0

2017-08-09 KENNETH 0

4038556 – Guidance for securing applications that host the WebBrowser Control – Version: 1.0 Revision Note: V1.0 (August 8, 2017): Advisory published.Summary: Microsoft is releasing this security advisory to provide information regarding security settings for applications developed with the Microsoft Internet Explorer layout engine, also known as the Trident layout engine. This advisory also provides guidance on what developers and individuals can do to ensure that their applications hosting the WebBrowser Control are properly secured. Source: 4038556 – Guidance for securing applications that host the WebBrowser Control – Version: 1.0

No Image

4033453 – Vulnerability in Azure AD Connect Could Allow Elevation of Privilege – Version: 1.0

2017-06-28 KENNETH 0

4033453 – Vulnerability in Azure AD Connect Could Allow Elevation of Privilege – Version: 1.0 Revision Note: V1.0 (June 27, 2017): Advisory published.Summary: Microsoft is releasing this security advisory to inform customers that a new version of Azure Active Directory (AD) Connect is available that addresses an Important security vulnerability. Source: 4033453 – Vulnerability in Azure AD Connect Could Allow Elevation of Privilege – Version: 1.0