Microsoft Security Bulletin(s) for September 13, 2016

Security Bulletins / Advisories, Uncategorized No Comments »

Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: » ··· security and » are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:
» ··· ms16-sep

Critical (7)

Microsoft Security Bulletin MS16-104
Cumulative Security Update for Internet Explorer (3183038)
» ··· ms16-104

Microsoft Security Bulletin MS16-105
Cumulative Security Update for Microsoft Edge (3183043)
» ··· ms16-105

Microsoft Security Bulletin MS16-106
Security Update for Microsoft Graphics Component (3185848)
» ··· ms16-106

Microsoft Security Bulletin MS16-107
Security Update for Microsoft Office (3185852)
» ··· ms16-107

Microsoft Security Bulletin MS16-108
Security Update for Microsoft Exchange Server (3185883)
» ··· ms16-108

Microsoft Security Bulletin MS16-116
Security Update in OLE Automation for VBScript Scripting Engine (3188724)
» ··· ms16-116

Microsoft Security Bulletin MS16-0117
Security Update for Adobe Flash Player (3188128)
» ··· ms16-117

Important (7)

Microsoft Security Bulletin MS16-109
Security Update for Silverlight (3182373)
» ··· ms16-109

Microsoft Security Bulletin MS16-110
Security Update for Windows (3178467)
» ··· ms16-110

Microsoft Security Bulletin MS16-111
Security Update for Windows Kernel (3186973)
» ··· ms16-111

Microsoft Security Bulletin MS16-112
Security Update for Windows Lock Screen (3178469)
» ··· ms16-112

Microsoft Security Bulletin MS16-113
Security Update for Windows Secure Kernel Mode (3185876)h
» ··· ms16-113

Microsoft Security Bulletin MS16-114
Security Update for SMBv1 Server (3185879)
» ··· ms16-114

Microsoft Security Bulletin MS16-115
Security Update for Microsoft Windows PDF Library (3188733)
» ··· ms16-115

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact: For home users, no-charge support for security updates (only!) is available by calling 800-MICROSOFT (800-642-7676) in the US or 877-568-2495 in Canada.

Remove the Fake AnonPop Ransomware (

Uncategorized Comments Off on Remove the Fake AnonPop Ransomware (

The Anonpop Fake Ransomware is a malware program discovered by @JAMESWT_MHT that pretends to be a ransomware that encrypts your files and demands a ransom of $125 to decrypt them. In reality, though, this program does not encrypt any of your files and deletes them instead. Thankfully, these scumbags do not securely delete the files and you can use Shadow Volume Copies or programs like Recuva or PhotoRec to recover your files.

Adwcleaner v5.117 Released on May 15, 2016

Uncategorized Comments Off on Adwcleaner v5.117 Released on May 15, 2016

v5.117 – 15/05/16

[ADD] – Added traditional Chinese translation

[UPD] – Local database v15-05-2016.2
[UPD] – Generic startup elements detection updated
[UPD] – Generic tasks detection updated
[UPD] – Generic softwares detection updated

Spybot Search & Destroy Weekly Update – March 16, 2016

Uncategorized, Updates Comments Off on Spybot Search & Destroy Weekly Update – March 16, 2016

+ Ad.Outobox ++ Ad.ResultsAlpha + MeMedia.AdVantage
+ ZenoSearch
+ Marketscore.RelevantKnowledge
+ Win32.Bifrost + Win32.Kazy + Win32.KillAV.hd + Win32.Koutodoor.aik + Win32.Turkojan
Total: 2615955 fingerprints in 827093 rules for 7610 products.

Merry Christmas

Uncategorized Comments Off on Merry Christmas

Wishing family and friends a very Merry Christmas and happiness this holiday season and throughout the coming year

Pale Moon 25.8.1 Released: November 28, 2015

Uncategorized Comments Off on Pale Moon 25.8.1 Released: November 28, 2015

Pale Moon: Release notes
25.8.1 (2015-11-28)
A small update to address two important issues:

Fix for a crash that could occur at random since the update to 25.8.0.

Fix for CSP (Content Security Policy) to be more lenient towards the incorrect passing of full URLs with all sorts of parameters in the CSP header, leading to misinterpretation of the header and incorrectly blocking the loading of content.

Pale Moon 25.8.0 Released: November 17, 2015

Uncategorized Comments Off on Pale Moon 25.8.0 Released: November 17, 2015

Pale Moon: Release notes
25.8.0 (2015-11-17)
This is a security, stability and usability update.


Updated LibVPX to 1.4.x to be able to play more kinds of VP9-encoded videos.
Updated the JPEG decoder library to 1.4.0.
Fixed and cleaned up XPCOM timer thread code to avoid intermittent issues with events not firing (especially after stand-by).
Updated overrides to work around issues with Facebook and Netflix.
Fixed an issue where too-old system-supplied NSPR and/or NSS libraries would be accepted for use.

Security fixes:

Updated the libpng library to 1.5.24 to address critical security issues CVE-2015-7981 and CVE-2015-8126
Updated the NSPR library to 4.10.10 to address several security issues.
Updated the NSS library to 3.19.4 to address several security issues.
Fixed a memory safety hazard in SVG path code (CVE-2015-7199).
Fixed an issue with IP address parsing potentially allowing an attacker to bypass the Same Origin Policy (CVE-2015-7188).
Fixed an Add-on SDK (Jetpack) issue that would allow scripts to be executed despite being forbidden (CVE-2015-7187).
Fixed a crash due to a buffer underflow in libjar (CVE-2015-7194).
Fixed an issue for Android full screen that would potentially allow address spoofing (CVE-2015-7185).
Added size checks in canvas manipulations to avoid potential image encoding vulnerabilities like CVE-2015-7189. DiD
Fixed potential information disclosure vulnerabilities through the NTLM authentication mechanism. Insecure NTLM v1 is now disabled by default, and the workstation name is set to WORKSTATION by default (configurable with a preference for environments where identification of workstations is done by actual reported machine name). This avoids issues like CVE-2015-4515.
Fixed a potentially vulnerable crash from a spinning event loop during resize painting. DiD
Fixed several Javascript-based memory safety hazards. DiD

DiD This means that the fix is “Defense-in-Depth”: It is a fix that does not apply to an actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code when surrounding code changes, exposing the problem.

Microsoft Security Advisory Notification Issued: October 13, 2015

Uncategorized Comments Off on Microsoft Security Advisory Notification Issued: October 13, 2015

Security Advisories Updated or Released Today

* Microsoft Security Advisory (3097966)
– Title: Inadvertently Disclosed Digital Certificates Could Allow
– Originally published: September 24, 2015

* Microsoft Security Advisory (3042058)
– Title: Update to Default Cipher Suite Priority Order
– Originally published: May 12, 2015

* Microsoft Security Advisory (2960358)
– Title: Update for Disabling RC4 in .NET TLS
– Originally published: May 13, 2014

* Microsoft Security Advisory (2755801)
– Title: Update for Vulnerabilities in Adobe Flash Player in
Internet Explorer
– Originally published: September 21, 2012

Removal instructions for CrossBrowse

Uncategorized Comments Off on Removal instructions for CrossBrowse

What is CrossBrowse?

The Malwarebytes research team has determined that CrossBrowse is adware. These adware applications display advertisements not originating from the sites you are browsing.

Mozilla Thunderbird – Released v31.6 to users on March 31, 2015

Uncategorized Comments Off on Mozilla Thunderbird – Released v31.6 to users on March 31, 2015

Thunderbird Notes

Version 31.6.0, first offered to Release channel users on March 31, 2015

Check out “What’s New” and “Known Issues” for this version of Thunderbird

© 2016 DP's Security Bits.
WordPress Theme & Icons by N.Design Studio. Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs
Entries RSS Comments RSS Log in