|
Microsoft plans to issue four security vulnerabilities next Tuesday, May
13, three critical and one of moderate threat level. This is the first patch since the release of Windows XP Service Pack 3 but there will not be any fixes related to the Service Pack, despite some hiccups
reported by users.
Microsoft to patch zero-day DNS flaw: News - Software - ZDNet Australia::
Each of the four product families is scheduled to get at least one critical Microsofts updates will include a patch for a vulnerability in the Windows
http://www.zdnet.com.au/news/software/soa/Microsoft-to-patch-zero30061733,339275251,00.htmHOME |
The critical flaws affect Microsoft Office, Microsoft Word, and Microsoft
Windows respectively. The most severe and widest impact appears to be in
Windows, specifically, in the Jet 4.0 Database Engine.
[ISN] Microsoft updates Excel security patch / Best of Security::
[ISN] Microsoft Patch Tuesday Brings Four Bulletins For Nine Flaws Microsoft Patch Tuesday Target 104. Reflections on a new internal Categories
http://bestofsecurity.net/news/ISN_Microsoft_updates_Excel_security_patchHOME |
The Security Advisory saying that it was "investigating new public
reports of very limited, targeted attacks using a vulnerability in the
Microsoft Jet Database Engine that can be exploited through Microsoft Word."
A number of applications use the Jet Database Engine, including Microsoft
Access, Microsoft Visual Basic, and Internet Information Services (IIS)
applications. Security firm Lumension is advising making the fix to Jet a priority.
InternetNews Realtime IT News - Microsoft Patches 10 Vulnerabilities::
This months patch Tuesday brings no less than seven First Patch Tuesday of 2008 Proves Modest. Microsofts Patch Day Targets Four Vulnerabilities
http://www.internetnews.com/security/article.php/3752096HOME |
MS Patch Day: 3 Critical Bulletins on Tap - Security::
According to Maiffret, there are four Microsoft flaws that have not been 2 - Microsoft Patch Tuesday Targets 26 Application Flaws (7759)
http://www.eweek.com/c/a/Security/MS-Patch-Day-3-Critical-Bulletins-on-TapHOME |
Jet exploit could have widest impact
"The Jet bulletin is the critical patch that will have the widest impact
because it affects Windows XP, Windows 2000 and Windows Server 2003," wrote
Don Leatham, director of solutions and strategy, in a press statement. "When prioritizing this month's patches, this will probably get the most attention because of the number of organizations running these systems and programs."
The moderate vulnerability affects quite a few Microsoft products, most
of them security products, like Windows Live OneCare, Antigen, Defender, and
Forefront Security. The vulnerability could allow malicious code to use
these applications to, in this case, launch a denial of service (DoS)
(define) attack.
"Whenever security tools themselves are affected (even if they have been
given 'moderate' status) we encourage customers to treat them with increased
importance. Any company that relies on these programs as part of their
overall security posture should pay close attention to this update," wrote
Leatham.
Microsoft will issue its fixes on Tuesday. As is always the case with its
pre-release alert, the number of fixes are subject to change, and there may
be more or fewer fixes on May 13.
Pre-Article:Oracle Threatens to Walk Away from BEA Deal
Next-Article:Researchers Uncover Online Trove of Stolen Data |
HOME