MS12-034 buggy, maybe ...
FYI...
MS12-034 buggy...
- http://support.microsoft.com/kb/2686509
Article ID: 2686509 - Last Review: May 16, 2012 - Revision: 3.0
Maurice N - MS MVP 2002-2010 - AumHa moderator & VSOP - DTS-L - malwarebytes.org forum moderator
- http://answers.microsoft.com/en-us/w...4-793d01b483db
May 9, 2012 - "... Open Internet Explorer (only!) to
- http://support.microsoft.com/kb/923737 [ignore any DOES NOT APPLY warnings as well as the APPLIES TO section] & run the Fix It.
Note=> For optimal results, check the Delete personal settings option.
1a. Open Internet Explorer (only!) to
- http://support.microsoft.com/kb/910336 [ignore the title & Symptoms].
1b. Dismiss/close the "automated troubleshooter" pop-up! - then...
1c. Ignoring any "Not recommended" or similar warnings, run Fix It 50202 in DEFAULT mode (if on a later run you still have the same failure, then repeat the above steps & then select the Agressive mode).
2. Reboot & then run a manual check for updates at Windows Update, etc., etc...
When you reach Windows Update, do a Custom scan for updates. Take (accept) the ones marked Critical or Important.
Decline any that are marked as "optional".
Have infinite patience while it scans and does it's work.
When it prompts you to Restart Windows, please do that. Allow it to restart.
Visit Windows Update via Start >> All Programs >> Windows Update
or Internet Explorer >> Tools >> Windows Update "
-or-
MS12-034: KB2686509 - Failure - due to remapping of a key
- https://social.technet.microsoft.com...-of-a-key.aspx
-or-
Problem with MS12-034 / KB 2676562 patch
- http://www.askwoody.com/2012/problem...2676562-patch/
May 9, 2012
:rolleyes: :confused:
Windows XP in update loop
FYI...
Windows XP in update loop
- http://h-online.com/-1582649
23 May 2012 - "Users of Windows XP are reporting more problems with recent automatic updates. Three security updates for .NET Framework 2.0 and 3.5 are at the centre of the problem, labelled as patches KB2518664, KB2572073 and KB2633880 in Windows XP's automatic update feature.
On affected systems, the installation of these patches proceeds without error but after a short time, the update service says it would like to install them again and will keep reinstalling the patches if allowed. Microsoft's general advice in this situation is to reset Windows Update components*, though it has yet to offer any specific advice. It is interesting to note that the three patches in question were -not- released on Microsoft's official patch day."
* http://support.microsoft.com/kb/910339
Last Review: May 18, 2012 - Revision: 14.1
MS11-044: http://support.microsoft.com/kb/2518864
Last Review: May 15, 2012 - Revision: 3.1
MS11-078: http://support.microsoft.com/kb/2572073
Last Review: October 11, 2011 - Revision: 1.1
MS12-016: http://support.microsoft.com/kb/2633880
Last Review: February 14, 2012 - Revision: 1.0
___
- http://msmvps.com/blogs/bradley/arch...ft-update.aspx
"... Now fixed, and the Microsoft securty bulletin alert indicates that some of these updates got a detection change..."
- https://technet.microsoft.com/en-us/...letin/ms12-035
• V2.1 (May 22, 2012): Added entry to the update FAQ to announce a detection change for KB2604092 for Microsoft .NET Framework 2.0 Service Pack 2 and KB2604110 for Microsoft .NET Framework 3.0 Service Pack 2 to correct an installation issue...
:sad:
MS Security Bulletin Advance Notification - June 2012
FYI...
- https://technet.microsoft.com/en-us/...letin/ms12-jun
June 07, 2012 - "This is an advance notification of security bulletins that Microsoft is intending to release on June 12, 2012...
(Total of -7-)
Bulletin 1 - Critical - Remote Code Execution - Requires restart - Microsoft Windows
Bulletin 2 - Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer
Bulletin 3 - Critical - Remote Code Execution - May require restart - Microsoft Windows, Microsoft .NET Framework
Bulletin 4 - Important - Remote Code Execution - May require restart - Microsoft Office, Microsoft Visual Basic for Applications
Bulletin 5 - Important - Elevation of Privilege - May require restart - Microsoft Dynamics AX
Bulletin 6 - Important - Elevation of Privilege - Requires restart - Microsoft Windows
Bulletin 7 - Important - Elevation of Privilege - Requires restart - Microsoft Windows
- https://blogs.technet.com/b/msrc/arc...edirected=true
7 Jun 2012 - "... This month’s release includes 7 bulletins addressing 25 vulnerabilities..."
.
MS Security Bulletin Advance Notification - July 2012
FYI...
- https://technet.microsoft.com/en-us/...letin/ms12-jul
July 05, 2012 - "This is an advance notification of security bulletins that Microsoft is intending to release on July 10, 2012...
(Total of -9-)
Bulletin 1 - Critical - Remote Code Execution - May require restart - Microsoft Windows
Bulletin 2 - Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer
Bulletin 3 - Critical - Remote Code Execution - May require restart - Microsoft Windows
Bulletin 4 - Important - Remote Code Execution - May require restart - Microsoft Office, Microsoft Developer Tools
Bulletin 5 - Important - Elevation of Privilege - Requires restart - Microsoft Windows
Bulletin 6 - Important - Remote Code Execution - Requires restart - Microsoft Windows
Bulletin 7 - Important - Information Disclosure - Requires restart - Microsoft Windows
Bulletin 8 - Important - Elevation of Privilege - May require restart - Microsoft Office, Microsoft Server Software
Bulletin 9 - Important - Elevation of Privilege - Does not require restart - Microsoft Office
- https://blogs.technet.com/b/msrc/arc...edirected=true
5 Jul 2012 -"... includes nine bulletins addressing 16 vulnerabilities in Microsoft Windows, Microsoft Office, Internet Explorer, and Visual Basic for Applications..."
.
MS Bulletin Advance Notification - August 2012
FYI...
- https://technet.microsoft.com/en-us/...letin/ms12-aug
August 09, 2012 - "This is an advance notification of security bulletins that Microsoft is intending to release on August 14, 2012...
(Total of -9-)
Bulletin 1 - Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer
Bulletin 2 - Critical - Remote Code Execution - Requires restart - Microsoft Windows
Bulletin 3 - Critical - Remote Code Execution - Requires restart - Microsoft Windows
Bulletin 4 - Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft SQL Server, Microsoft Server Software, Microsoft Developer Tools
Bulletin 5 - Critical - Remote Code Execution - Does not require restart - Microsoft Exchange
Bulletin 6 - Important - Elevation of Privilege - Requires restart - Microsoft Windows
Bulletin 7 - Important - Remote Code Execution - May require restart - Microsoft Windows
Bulletin 8 - Important - Remote Code Execution - May require restart - Microsoft Office
Bulletin 9 - Important - Remote Code Execution - May require restart - Microsoft Office
___
- https://blogs.technet.com/b/msrc/arc...edirected=true
9 Aug 2012 - "... The five Critical security bulletins are addressing ten vulnerabilities in Microsoft Windows, Internet Explorer, Exchange, SQL Server, Server Software, and Developer Tools. The bulletin for Exchange will address the issue first described in Security Advisory 2737111*. The four bulletins that have been rated as Important will address vulnerabilities in Windows and Microsoft Office..."
* http://technet.microsoft.com/en-us/s...visory/2737111
.
RE: MS Bulletin Advance Notification - August 2012
FYI...
Critical non-security update to be released :confused:
- https://blogs.technet.com/b/gladiato...edirected=true
9 Aug 2012 - "... Next week a security fix will be widely distributed which will prevent use of certificates which use weak (less than 1024 bit) RSA keys. Microsoft will issue a critical non-security update (KB 2661254) for Windows XP, Windows Server 2003, Windows Server 2003 R2, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. The update will block the use of cryptographic keys that are less than 1024 bits. You could potentially run into issues as it may cause outages for those who have services that leverage IIS or any other application or service (client side or server side) if those services rely on those weak certificates..."
:oops:
MS Security Bulletin Advance Notification - October 2012
FYI...
- https://technet.microsoft.com/en-us/...letin/ms12-oct
October 04, 2012 - "This is an advance notification of security bulletins that Microsoft is intending to release on October 9, 2012...
(Total of -7-)
Bulletin 1 - Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Server Software
Bulletin 2 - Important - Remote Code Execution - May require restart - Microsoft Office
Bulletin 3 - Important - Elevation of Privilege - May require restart - Microsoft Office, Microsoft Server Software, Microsoft Lync
Bulletin 4 - Important - Remote Code Execution - May require restart - Microsoft Office, Microsoft Server Software
Bulletin 5 - Important - Elevation of Privilege - Requires restart - Microsoft Windows
Bulletin 6 - Important - Denial of Service - Requires restart - Microsoft Windows
Bulletin 7 - Important - Elevation of Privilege - May require restart - Microsoft SQL Server
___
- https://blogs.technet.com/b/msrc/arc...edirected=true
4 Oct 2012 - "... advance notification of the release of seven bulletins, one Critical and six Important, which address 20 vulnerabilities for October 2012. The Critical bulletin addresses vulnerabilities in Microsoft Word. The six Important-rated bulletins will address issues in Windows, Microsoft Office, and SQL Server. This release will also address the issue in FAST Search Server first described in Security Advisory 2737111*... we’ll provide the update we described in Security Advisory 2661254** through Windows Update next Tuesday. We previously made this release available through the download center for manual deployment and testing. Releasing KB2661254 to Automatic Updates and requiring that RSA key lengths be a minimum of 1024 bits will be our final step in this effort to help customers strengthen their certificates..."
* https://technet.microsoft.com/en-us/...visory/2737111
Updated: Aug 14, 2012 - Version: 2.0
** https://technet.microsoft.com/en-us/...visory/2661254
Updated: Sep 11, 2012 - Version: 1.2
.
MS Security Bulletin Advance Notification - November 2012
FYI...
- http://technet.microsoft.com/en-us/s...letin/ms12-nov
November 08, 2012 - "This is an advance notification of security bulletins that Microsoft is intending to release on November 13, 2012...
(Total of -6-)
Bulletin 1 - Critical - Remote Code Execution - Restart required - Microsoft Windows, Internet Explorer
Bulletin 2 - Critical - Remote Code Execution - Restart required - Microsoft Windows
Bulletin 4 - Critical - Remote Code Execution - May require restart - Microsoft Windows, Microsoft .NET Framework
Bulletin 5 - Critical - Remote Code Execution - Restart required - Microsoft Windows
Bulletin 6 - Important - Remote Code Execution - May require restart - Microsoft Office
Bulletin 3 - Moderate - Information Disclosure - May require restart - Microsoft Windows
- https://blogs.technet.com/b/msrc/arc...edirected=true
8 Nov 2012 - "... advance notification for six bulletins to help protect customers against 19 CVEs. The four Critical-rated updates will address 13 vulnerabilities in Microsoft Windows, Internet Explorer and the .NET Framework. One bulletin rated Important will address four vulnerabilities in Microsoft Office and finally, one Moderate update will address two issues in Microsoft Windows..."
.
MS Security Bulletin Advance Notification - December 2012
FYI...
- http://technet.microsoft.com/en-us/s...letin/ms12-dec
Dec 06, 2012 - "This is an advance notification of security bulletins that Microsoft is intending to release on December 11, 2012...
(Total of -7-)
Bulletin 1 - Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer
Bulletin 2 - Critical - Remote Code Execution - Requires restart - Microsoft Windows
Bulletin 3 - Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Server Software
Bulletin 4 - Critical - Remote Code Execution - May require restart - Microsoft Server Software
Bulletin 5 - Critical - Remote Code Execution - Requires restart - Microsoft Windows
Bulletin 6 - Important - Remote Code Execution - Requires restart - Microsoft Windows
Bulletin 7 - Important - Security Feature Bypass - Requires restart - Microsoft Windows
___
- https://blogs.technet.com/b/msrc/arc...edirected=true
6 Dec 2012 - "... five Critical and two Important, which address 11 vulnerabilities. The Critical bulletins address vulnerabilities in Microsoft Windows, Word, Windows Server and Internet Explorer. The two Important-rated bulletins will address issues in Microsoft Windows..."
.
MS Security Bulletin Advance Notification - Jan 2013
FYI...
MS Security Bulletin Advance Notification - Jan 2013
- http://technet.microsoft.com/en-us/s...letin/ms13-jan
Jan 03, 2013 - "This is an advance notification of security bulletins that Microsoft is intending to release on January 8, 2013...
(Total of -7-)
Bulletin 1 - Critical - Remote Code Execution - Requires restart - Microsoft Windows
Bulletin 2 - Critical - Remote Code Execution - May require restart - Microsoft Windows, Microsoft Office, Microsoft Developer Tools, Microsoft Server Software
Bulletin 3 - Important - Elevation of Privilege - Does not require restart - Microsoft Server Software
Bulletin 4 - Important - Elevation of Privilege - May require restart - Microsoft Windows, Microsoft .NET Framework
Bulletin 5 - Important - Elevation of Privilege - Requires restart - Microsoft Windows
Bulletin 6 - Important - Security Feature Bypass - Requires restart - Microsoft Windows
Bulletin 7 - Important - Denial of Service - May require restart - Microsoft Windows, Microsoft .NET Framework
.