WGWN

• Exchange infinte loop flaw and Sharepoint code execution pose little risk to most admins    (Wed, 15 Dec 2010 01:02:45 GMT)
  Exchange and SharePoint bulletins fix such low risk flaws they don't deserve a full alert.
• Microsoft Black Tuesday: Might as well be a record Patch Day.    (Tue, 14 Dec 2010 19:16:07 GMT)
  According to their Bulletin Summary for December, Microsoft released 17 security updates for Windows, Office, Internet Explorer (IE), and more.
• Expect a stocking full of Microsoft patches for Christmas    (Fri, 10 Dec 2010 01:59:56 GMT)
  If you were looking forward to a slow, relaxing Patch Day this December, it's time to reset your expectation. Microsoft plans to fill your network stocking with updates next Tuesday. Click through to learn how many updates to expect.
• Official ProFTPD source code "backdoored" via a zero day flaw    (Tue, 07 Dec 2010 00:03:21 GMT)
  ProFTPD warned that they've been distributing a booby-trapped version of their FTP server's source code. If you downloaded and installed ProFTPD from a legitimate distribution server between Nov 28 and Dec 1, you likely have a backdoor on your system.
• Microsoft Black Tuesday: Seven Office vulnerabilities make documents dangerous    (Tue, 09 Nov 2010 23:23:24 GMT)
  As expected, Microsoft released three security bulletins; two for Office (and the components that ship with it), and one for Forefront Unified Access Gateway. Unfortunately, they did not release any surprise bulletins or updates to fix the zero day Intern
• November Patch Day brings Office and Forefront updates.    (Tue, 09 Nov 2010 00:31:57 GMT)
  Microsoft plans to release three security bulletins tomorrow, 9 November. The security bulletins will cover vulnerabilities in Office and Forefront Unified Access Gateway. Microsoft rates one of the Office bulletins as Critical, and the rest as Important.
• Zero day Firefox vulnerability exploited on Nobel Peace Prize site.    (Wed, 27 Oct 2010 11:32:13 GMT)
  Security researchers find a zero day Firefox exploit on the Nobel Peace Prize web site. Corey tells you how to protect yourself from this new threat.
• Researcher releases zero day Shockwave vulnerability and exploit    (Sat, 23 Oct 2010 23:30:43 GMT)
  A Grey Hat researcher from Abysssec released a critical, zero day vulnerability and exploit for Adobe Shockwave. Adobe hasn't had time to patch. Read on to learn more.
• Microsoft Black Tuesday: Officially the busiest Patch Day ever.    (Tue, 12 Oct 2010 19:09:02 GMT)
  Microsoft has released a record 16 security updates for Windows, Office, Internet Explorer (IE), and some Windows Servers (Sharepoint, Groove, etc).
• Microsoft Black Tuesday: Yet another record-breaking Patch Day in October    (Thu, 07 Oct 2010 23:38:02 GMT)
  Microsoft expects another record setting Patch Day on Tuesday, October 12. Specifically, they plan to release 16 security bulletins, which correct a total of 49 vulnerabilities in Windows, Office, Internet Explorer, and "Windows Server Software."