September 2010 Microsoft security bulletins to fix 13 vulnerabilities

Among the nine bulletins are fixes for Windows, IIS and Microsoft Office, but probably not a fix for the recently discovered IE8 CSS bug that can harvest social network data.

Microsoft next week will release nine bulletins as part of its Patch Tuesday monthly updates to address 13 vulnerabilities

in its software.

The software giant's September 2010 bulletins, to be released Sept. 14, will address flaws found in Windows, Internet Information Services (IIS) and Microsoft Office. Four of the updates, which are considered critical, will remedy vulnerabilities in Microsoft Office and Windows.

Based on the September advance notification published Thursday on the Microsoft Security Response Center (MSRC) blog, it's unlikely that Microsoft will address the Internet Explorer CSS bug that came to light earlier this week. The flaw, specific to Internet Explorer 8, can enable an attacker to steal data or force the victim to post to Twitter or other social networks.

The number of bulletins slated for release is down considerably from last month. The August 2010 Microsoft security bulletins addressed a record-tying 34 vulnerabilities with 14 bulletins. These updates patched flaws in Microsoft Office and Internet Explorer, among other applications.

Earlier this month Microsoft released the Enhanced Mitigation Experience Toolkit (EMET) version 2.0. This tool can help users to manage risk while transferring over to modern products and helps to improve security in third-party applications.

Microsoft next week will also release a new version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and its Download Center.

Dig deeper on Windows Security: Alerts, Updates and Best Practices

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close