Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Microsoft Patch Tuesday Preview SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Microsoft Patch Tuesday Preview

Looks like next Tuesday will be another "average" patch Tuesday. We are to expect 8 total patches, 3 of which are rated "critical" with the remaining 5 "important".

There will be no patch for the TIFF vulnerability. But then again, it was just announced this week. Also, if you are running Window 7 or later, you should be safe for now from this exploit.

The three critical patches include the typical "cummulative Internet Explorer" patch and two Windows Patches. It doesn't look like any of the patches addresses specific server issues, but some of the Windows patches will affect servers as well as clients.

 

------
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
Twitter

I will be teaching next: Defending Web Applications Security Essentials - SANS San Francisco Spring 2020

Johannes

3696 Posts
ISC Handler
From the MSRC "Office 2003 and Office 2007 are affected regardless of the installed operating system."

http://blogs.technet.com/b/msrc/archive/2013/11/07/clarification-on-security-advisory-2896666-and-the-ans-for-the-november-2013-security-bulletin-release.aspx
Anonymous

Sign Up for Free or Log In to start participating in the conversation!