Alert

Microsoft Security Bulletins Advanced Notification

Microsoft Security Bulletin Advance Notification for June 2011

Published: June 09, 2011

Microsoft Security Bulletin Advance Notification issued: June 09, 2011
Microsoft Security Bulletins to be issued: June 14, 2011

Microsoft is planning to release 17 security bulletins on June 14, 2011. There are nine (9) rated critical and seven (7) rated Important.

http://www.microsoft.com/technet/security/bulletin/ms11-jun.mspx
Discussion is locked
Follow
Reply to: Microsoft Security Bulletins Advanced Notification
PLEASE NOTE: Do not post advertisements, offensive materials, profanity, or personal attacks. Please remember to be considerate of other members. If you are new to the CNET Forums, please read our CNET Forums FAQ. All submitted content is subject to our Terms of Use.
Reporting: Microsoft Security Bulletins Advanced Notification
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Comments
- Collapse -
Additional Information from MSRC..

Angela Gunn's post, "June Advance Notification Service and 10 Immutable Laws Revisited", reads in part:

As for this month's bulletins, today we're providing Advance Notification Service information on 16 bulletins (nine Critical in severity, seven Important) addressing 34 vulnerabilities in Microsoft Windows, Microsoft Office, Internet Explorer, .NET, SQL, Visual Studios, Silverlight and ISA. All bulletins will be released on Tuesday, June 14, at approximately 10am PDT. Come back to this blog on Tuesday for our official risk and impact analysis, along with deployment guidance and a video overview of the release.

One of the issues we start to address in this release is "cookiejacking," which allows an attacker to steal cookies from a user's computer and access websites the user has logged into. The Internet Explorer bulletin will address one of the known vectors to the cookie folder. Given the prevalence of other types of social engineering methods in use by criminals, which provide access to much more than cookies, we believe this issue poses lower risk to customers. Further, based on a signature that has been released to millions of Microsoft Security Essentials and Forefront customers, the Microsoft Malware Protection Center (MMPC) has not detected attempts to use this technique.

http://blogs.technet.com/b/msrc/archive/2011/06/09/june-advance-notification-service-and-10-immutable-laws-revisited.aspx

- Collapse -
Total Bulletins Should Read 16
9 (Critical) + 7 (Important) = 16 (Bulletins)

"Someone" didn't .... *do the math* (correctly) Silly

CNET Forums