I was doing some research on the current state of browser patches against the BEAST exploit (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389) and ran across something interesting with regard to Internet Explorer. The Taiwanese Chinese version of Security Bulletin MS11-099 (http://technet.microsoft.com/zh-tw/security/bulletin/ms11-099) seems to indicate that it addresses BEAST (CVE-2011-3389), whereas the U.S. English version (http://technet.microsoft.com/en-us/security/bulletin/ms11-099) does not. There is an extra line in the Vulnerability Information section of the Bulletin. I have not found any other versions claim to address BEAST. Can anyone shed any light on this? Disclaimer: I cannot read Chinese, but the layout of the Security Bulletins and the placement of the Latin letters and Arabic numbers of the CVE citations make this pretty obvious to me. If, by some small chance, I'm reading this wrong, please correct me gently. ____________________________________________________________________________ Michael A. Vance, CISSP, GCIH | Senior Technical Architect, Information Security Michael.Vance@salliemae.com<mailto:Michael.Vance@salliemae.com> This E-Mail has been scanned for viruses.