Microsoft Releases Suite of Security Updates
Microsoft has just released 11 security updates that fix critical flaws in its products, including a publicly known ActiveX bug that affects users of the Visual FoxPro database. In total, 17 individual software flaws were patched in the updates. Microsoft rates six updates as critical, meaning users should install them as soon as possible, while the remaining five updates are considered “important.”
Microsoft surprised some by releasing one less update than expected. Last Thursday the software vendor had said that it was readying a fix for critical VBScript and JScript flaws in Windows 2000, XP, and Windows Server 2003. That update wasn’t included in this week’s patches, but Microsoft today wouldn’t confirm that it had actually dropped the update because “this could put customers at risk,” according a spokeswoman for the company’s public relations agency.
IE Patch CriticalSecurity experts said Tuesday that the MS08-010 update, which fixes four bugs in Internet Explorer, should take top priority this week. “There are four vulnerabilities within that particular patch and all of them are remote-code executable,” said Jonathan Bitle, director of technical account management with Qualys.
“The way we’re looking at it, our prioritization would put MS08-010 at the top followed by MS08-007,” said Don Leatham, director of solutions and strategy with Lumension Security.
MS08-010 fixes a publicly disclosed ActiveX bug that affects Visual FoxPro users. Although hackers have already posted code showing how to exploit this vulnerability, the buggy ActiveX control is not included in Internet Explorer 7’s default list of controls, so the flaw should not affect most users.
The MS08-007 update fixes a critical flaw in the Windows XP and Vista WebDAV redirector software. WebDAV is a Web-based document sharing protocol. The flaw is rated important for Windows Server 2003 users.
Related Stories
POSTED IN: Security Bulletins, Windows Patches
0 opinions for Microsoft Releases Suite of Security Updates
No one has left a comment yet. You know what this means, right? You could be first!
Have an opinion? Leave a comment: