Earlier today, Core Security Technologies issued a security advisory for our Virtual PC (VPC) software. The advisory calls out a proof of concept where the virtual machine monitor allows memory pages above the 2GB level to be read from or written to by user-space programs running within a guest operating system. The advisory explicitly calls into question the effectiveness of many of the security hardening features of Windows, including DEP, SafeSEH, and ASLR

It addresses Security Advisory 979682.

We recommend that customers install the update as soon as it is available. For customers using automatic updates, this update will automatically be applied once it is released. Today we also updated Security Advisory 979352 to include …

According to an e-mailed statement from Microsoft spokesperson Jerry Bryant, “Customers with Windows 2000 systems will want to review and deploy this update as soon as possible.” Bryant pointed to Security Advisory 977544 describing a …

Revision Note: V1.0 (January 12, 2010): Advisory published.Summary: Security Advisory

Looks like the MSRC posted the December security bulleting webcast last Friday: There is one question that I wanted to provide a little more information on and that references reports of KB973917 causing problems with Internet Information Services (IIS) 6.0 running on Windows Server 2003 SP2.

Revision Note: V1.0 (December 8, 2009): Advisory published.Summary: This advisory addresses the potential for attacks that affect the handling of credentials using Integrated Windows Authentication (IWA), and the mechanisms Microsoft has made available for customers to help protect against these attacks.

Just in case you missed it, last Friday we released Security Advisory 977544 to provide information, including customer guidance, on a publicly reported Denial-of-Service (DoS) vulnerability affecting Server Messaging Block (SMB) Protocol. You can read all the details here .

The advisory for 063 is confusing I am not sure what their reference to local subnet means, later in the advisory they state: How could an attacker exploit the vulnerability? An attacker could try to exploit the vulnerability by sending a specially crafted message to the WSD TCP ports 5357 or 5358 on an affected system.

Posted by VMware Security Team on Oct 16 ———————————————————————– VMware Security Advisory Advisory ID: VMSA-2009-0014 Synopsis: VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues Issue date: 2009-10-16 Updated on: 2009-10-16 (initial release of advisory) CVE numbers: CVE-2009-0692 CVE-2009-1893 CVE-2009-0692…

Issued: October 13, 2009 Security Advisories Updated or Released Today * Microsoft Security Advisory (975497) – Title: Vulnerabilities in SMB Could Allow Remote Code Execution – http://www.microsoft.com/technet/security/advisory/975497.mspx – Revision Note: V2.0 (October 13, 2009): Advisory updated to reflect publication of security bulletin.

Microsoft has updated Security Advisory 975191. The update notes Microsoft is now getting reports of the vulnerability being exploited in a targeted nature. With the exploit code publically available and no patch as of today, …