Microsoft plans to issue four updates this week to repair flaws in Windows and SQL Server that could be exploited to conduct spoofing attacks and execute code remotely.
Requires Free Membership to View
SearchSecurity.com members gain immediate and unlimited access to breaking industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.com today!
Michael S. Mimoso, Editorial Director
 |
||||
|
|
|||
|
||||
In its advance notification issued last week on its TechNet site, Microsoft said the flaws affected software in Windows, SQL Server and Exchange Server. The bulletins have been rated important by the software maker and will be issued Tuesday afternoon as part of Mircosoft's Patch Tuesday bulletins.
The flaws are in Microsoft SQL Server 2000 Desktop Engine and Windows Internal Database Service Pack 2. Microsoft said the Windows Server 2008 server core installation is affected by the updates.
Bill Sisk, the response communications manager for the Microsoft Security Response Center, (MSRC) said the update will include improvements to the infrastructure of the Update Agent. The new agent will be improved to shorten the length of time it takes Windows Update to scan and receive updates.
Last month Microsoft issued three updates to address critical flaws affecting Bluetooth, DirectX and Internet Explorer. The software maker also issued an update to correct a problem with the System Center Configuration Manager 2007, which was blocking some updates.
Microsoft will also conduct a webcast about the bulletins on Wednesday at 11 a.m. PST.