There's a remotely exploitable, publicly disclosed, critical remote code execution vulnerability in Microsoft Exchange (MS13-061)! But wait, is it really remotely exploitable? Well, not in the sense that user interaction is not required, it's a parser issue that is only triggered by a user opening a malicious message in Outlook Web Access (OWA).
The August 2013 Patch Tuesday advance notification includes a slightly higher volume of fixes than last month, but only 3 of 8 are critical, which is down from July’s 6 of 7 critical fixes.
High-Tech Bridge Security Research Lab released its statistics on web application security for the first half of 2013.
Relatively quiet Critical Patch Update (CPU) from Oracle this quarter.
This month's Patch Tuesday has been a prolific one, and patches for a total of 34 vulnerabilities - six of which critical - have been made available for users.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.