Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Dark Black Tuesday Coming Up: 17 Microsoft Bulletins - Internet Security | DShield SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Dark Black Tuesday Coming Up: 17 Microsoft Bulletins

Microsoft got big plans for everybody for next Tuesday, and I hope you haven't made any dinner plans because you will be busy patching (or working with your old friends like WSUS to get the patches tested and released).

A total of 17 Bulletins are going to be released according to Microsoft's pre-release. 9 bulletins are rated critical and 8 are rated important. It pretty much affects the usual suspects (Windows, Internet Explorer and Office) as well as some less regular guest starts like Microsoft's developer tools.

The critical patches apply pretty much to all versions of Windows (XP, Vista, Windows 7 and 2008) with one or two exceptions.

[1] http://www.microsoft.com/technet/security/bulletin/ms11-apr.mspx

------
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
Twitter

I will be teaching next: Intrusion Detection In-Depth - SANS London July 2019

Johannes

3561 Posts
ISC Handler
The 17 bulletins cover 64 vulnerabilities according to ZDNET. I predict april showers of malware. It sounds like there are already 0-days attacks in the wild for the MHTML vulnerability. (Microsoft Security Advisory 2501696)
James

8 Posts
Not that the federal government patches immediately but this could be interesting if there is no one to patch systems for a week, two... who knows. I've already been told I "have not been identified as excepted " :(
James
7 Posts
Anyone else getting a page not found error when clicking on the April 2011 ANS link from the Microsoft RSS feed at http://www.microsoft.com/technet/security/bulletin/RssFeed.aspx?snscomprehensive ?
James
12 Posts

Sign Up for Free or Log In to start participating in the conversation!