Microsoft Breaks Patch Cycle, Releases Out-of-Band Fix for Visual Studio and IE
Microsoft has announced that this Tuesday, the 28th of July, it will release an out-of-band update that is meant to address the issue of overall customer security – it will also include two (separate) security bulletins related to Visual Studio and one related to IE (Internet Explorer). The Visual Studio one has been rated by Microsoft as “moderate” while the IE one has been rated as “critical.” Both security vulnerabilities allow a person with malicious intent to perform remote code execution on the targeted machine.
Technical details on the security bulletins included in this out-of-band update are scarce, mainly because Microsoft does not want to share them with the rest of the world before a patch has already been released.
Director with Microsoft Security Response Center (MSRC), Mike Reavey, comments: “While we can’t go into specifics about the issue prior to release, we can say that the Visual Studio bulletin will address an issue that can affect certain types of applications. The Internet Explorer bulletin will provide defense-in-depth changes to Internet Explorer to help provide additional protections for the issues addressed by the Visual Studio bulletin. The Internet Explorer update will also address vulnerabilities rated as Critical that are unrelated to the Visual Studio bulletin that were privately and responsibly reported.”
The thing to keep in mind is that the Redmond-based software giant rarely breaks its Patch Tuesday program. Each month, on the second Tuesday, Microsoft rolls out an update for its products. There are times when the company breaks this cycle, but that is quite unusual. It must mean that the security issue in question is quite a serious one – and by that I mean it is being actively exploited in the wild.
It is not all doom and gloom though. Mike Reavey explained that if you are a Microsoft customer and are up-to-date on your security updates, then you should be protected from known attacks related this update.
Besides Mike Reavey's announcement, an Advance Notification has been issued as well – you can read it here.
Tags: Microsoft, Patch, Security, Update, Patch Tuesday, Visual Studio, Internet Explorer, IE
Technical details on the security bulletins included in this out-of-band update are scarce, mainly because Microsoft does not want to share them with the rest of the world before a patch has already been released.
Advertising
Director with Microsoft Security Response Center (MSRC), Mike Reavey, comments: “While we can’t go into specifics about the issue prior to release, we can say that the Visual Studio bulletin will address an issue that can affect certain types of applications. The Internet Explorer bulletin will provide defense-in-depth changes to Internet Explorer to help provide additional protections for the issues addressed by the Visual Studio bulletin. The Internet Explorer update will also address vulnerabilities rated as Critical that are unrelated to the Visual Studio bulletin that were privately and responsibly reported.”
The thing to keep in mind is that the Redmond-based software giant rarely breaks its Patch Tuesday program. Each month, on the second Tuesday, Microsoft rolls out an update for its products. There are times when the company breaks this cycle, but that is quite unusual. It must mean that the security issue in question is quite a serious one – and by that I mean it is being actively exploited in the wild.
It is not all doom and gloom though. Mike Reavey explained that if you are a Microsoft customer and are up-to-date on your security updates, then you should be protected from known attacks related this update.
Besides Mike Reavey's announcement, an Advance Notification has been issued as well – you can read it here.
Tags: Microsoft, Patch, Security, Update, Patch Tuesday, Visual Studio, Internet Explorer, IE
I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 09 Feb 2012
Redmond-based software giant Microsoft is giving all US residents the chance to win a Pink Sony VAIO Y laptop (ARV $6,000) as part of a Valentine’s Day Sweepstakes
By George Norman on 09 Feb 2012
The latest stable version of Google Chrome web browser is v. 17.0 which was rolled out to the public on Wednesday, the 8th of February, one day after the release of Chrome for Android Beta 1Related News
By George Norman on 14 Sep 2011
Below you can check out the information Redmond-based software giant Microsoft released about the 5 security bulletins it rolled out this September as part of its Patch Tuesday program. The 
By George Norman on 13 Dec 2011
Tuesday, the 13th of December, is December 2011 Patch Tuesday, the last Patch Tuesday of the year. This December Microsoft will release a total of 14 security bulletins to its customers.
By George Norman on 09 Sep 2011
Redmond-based software giant Microsoft has recently announced that this September, as part of its Patch Tuesday program, it will roll out 5 security bulletins to its customers all over the world. All five 
By George Norman on 04 Nov 2011
Redmond-based software giant Microsoft has recently announced that next week, as part of the Patch Tuesday program, it will roll out a four security bulletins. The aforementioned bulletins are meant to plugAdvertising
Hot Software Updates
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
Microsoft Breaks Patch Cycle, Releases Out-of-Band Fix for Visual Studio and IE
HTML Linking Code
HTML Linking Code