Microsoft did recently announce that they are going to allow users to subscribe to the pre-alert alerts. Premium customers have been privileged to receive a heads up in advance of the actual Security Bulletins so that they could make the appropriate preparations for any urgent patches. Now they will let everyone receive these same sort of alerts so that even small and medium companies or individual users can be notified about the upcoming patches and vulnerabilities.
There is only the one bulletin this month which does not address the Internet Explorer iFrames buffer overflow vulnerability which was announced last Friday and has been exploited this week by a new version of the MyDoom worm.
- Microsoft Security Bulletin MS04-039
Vulnerability in ISA Server 2000 and Proxy Server 2.0 Could Allow Internet Content Spoofing
Microsoft Criticality: Important