Article

Microsoft to patch critical Windows vulnerabilities

SearchSecurity.com Staff

Microsoft plans to issue three bulletins, one rated critical March 10 as part of its regularly scheduled monthly updates.

    Requires Free Membership to View

SearchSecurity.com:
To get security news and tips delivered to your inbox, click here to sign up for our free newsletter.

In its advance notification issued Thursday, Microsoft said all supported versions of Windows would be affected by the update. As it does every month, the software giant said it would also update its Windows Malicious Software Removal Tool.

In February, Microsoft issued four bulletins addressing critical flaws in Internet Explorer 7 and Exchange and holes in SQL Server and its Office Visio diagramming software. The most critical vulnerabilities were in IE 7 and Exchange. The holes could be exploited remotely to gain access to critical files or conduct a denial-of-service attack.

Microsoft also recently issued an advisory addressing a Microsoft Excel zero-day flaw being actively targeted by attackers. The software giant gave no indication that it would be patching the vulnerability next week. Currently Microsoft is advising customers to use the Microsoft Office Isolated Conversion Environment (MOICE) when opening Excel files from unknown or un-trusted sources.


There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: