MS Sec Notification mailing list archives

Microsoft Security Advisory Notification

From: "Microsoft" <securitynotifications () e-mail microsoft com>
Date: Tue, 08 Jul 2014 11:06:10 -0600

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Notice to IT Professionals: 
 
On June 27, 2014, we notified customers that we were suspending
Microsoft security notifications by email due to changing 
Governmental policies concerning the issuance of automated 
electronic messaging. We have reviewed our processes and have 
resumed security notifications by email as of July 3, 2014.


********************************************************************
Title: Microsoft Security Advisory Notification
Issued: July 8, 2014
********************************************************************

Security Advisories Updated or Released Today
==============================================

* Microsoft Security Advisory (2755801)
  - Title: Update for Vulnerabilities in Adobe Flash Player 
    in Internet Explorer
  - https://technet.microsoft.com/library/security/2755801
  - Revision Note: V26.0 (July 8, 2014): Added the 2974008
    update to the Current Update section.


* Microsoft Security Advisory (2871997)
  - Title: Update to Improve Credentials Protection and Management
  - https://technet.microsoft.com/library/security/2871997
  - Revision Note: V2.0 (July 8, 2014): Rereleased advisory to 
    announce the release of updates 2973351 and 2919355 to provide
    further control over the Restricted Admin settings. Depending
    on the software installed on their system, customers should
    apply either 2973351 or 2919355 immediately. See Updates
    Related to this Advisory and Advisory FAQ for details.

* Microsoft Security Advisory (2960358)
  - Title: Update for Disabling RC4 in .NET TLS
  - https://technet.microsoft.com/library/security/2960358
  - Revision Note: V1.2 (July 8, 2014): Advisory revised to
    announce a Microsoft Update Catalog detection change for
    the updates requiring installation of the 2868725
    prerequisite update. This is a detection change only.
    Customers who have already successfully updated their
    systems do not need to take any action.


Other Information
=================

Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing 
a Microsoft security update, it is a hoax that may contain 
malware or pointers to malicious websites. Microsoft does 
not distribute security updates via email. 

The Microsoft Security Response Center (MSRC) uses PGP to digitally 
sign all security notifications. However, PGP is not required for 
reading security notifications, reading security bulletins, or 
installing security updates. You can obtain the MSRC public PGP key
at 
<https://technet.microsoft.com/security/dn753714>.

********************************************************************
THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING
LIMITATION MAY NOT APPLY.
********************************************************************

Microsoft respects your privacy. Please read our online Privacy
Statement at
<http://go.microsoft.com/fwlink/?LinkId=81184>.

If you would prefer not to receive future technical security
notification alerts by email from Microsoft and its family of
companies please visit the following website to unsubscribe:
<https://profile.microsoft.com/RegSysProfileCenter/subscriptionwizar
d.aspx?wizid=5a2a311b-5189-4c9b-9f1a-d5e913a26c2e&%3blcid=1033>.

These settings will not affect any newsletters you've requested or
any mandatory service communications that are considered part of
certain Microsoft services.

For legal Information, see:
<http://www.microsoft.com/info/legalinfo/default.mspx>.

This newsletter was sent by:
Microsoft Corporation
1 Microsoft Way
Redmond, Washington, USA
98052





-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 10.2.0 (Build 1950)
Charset: utf-8
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=wA4N
-----END PGP SIGNATURE-----

Current thread:

Microsoft Security Advisory Notification Microsoft (Jul 08)
- <Possible follow-ups>
- Microsoft Security Advisory Notification Microsoft (Jul 10)
- Microsoft Security Advisory Notification Microsoft (Jul 17)
- Microsoft Security Advisory Notification Microsoft (Jul 29)
- Microsoft Security Advisory Notification Microsoft (Aug 12)
- Microsoft Security Advisory Notification Microsoft (Sep 09)
- Microsoft Security Advisory Notification Microsoft (Sep 23)