Oracle has announced an out of band Java update to resolve a publicly-disclosed vulnerability that can be exploited over the network, without need for authentication. The vulnerability fits the profile of one that’s more likely to be exploited in 3o days or less. The Oracle Security Advisory for CVE
Microsoft is going out of their normal release cycle to post a new security bulletin for Internet Explorer. This bulletin fixes a vulnerability that is currently being exploited in the wild. In the past few years, Microsoft has gone out-of-band with security bulletin releases on limited occasions.
Microsoft has gone out-of-band from their normal release cycle for a critical security bulletin release. The bulletin addresses the zero-day vulnerability described in Security Advisory KB979352. The last time Microsoft went out-of-band for a security bulletin was last July. That bulletin addresse
Microsoft has just updated their advanced notification page for January 2010. They will be releasing an out-of-band patch for the Internet Explorer zero day exploit tomorrow, January 21. More information can be found here. They have also updated the Security Advisory with more details and clarifica
Microsoft's MSRC just announced that Microsoft will be going out-of-band with a security bulletin release. This release will fix the highly publicized Security Advisory KB979352. Tomorrow, Microsoft will announce the timing of the out-of-band release. This is the second out-of-band in a row that M