Home > Security News > Microsoft to patch critical Windows, Office flaws
Security News:
EMAIL THIS

Microsoft to patch critical Windows, Office flaws

By Bill Brenner, Senior News Writer
06 Jul 2006 | SearchSecurity.com

Security Wire Daily News
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google

After getting 13 security updates for flaws in a variety of Microsoft programs last month, IT administrators might have been hoping for a lighter patch load for July.

If so, they're in for an unpleasant surprise.

The software giant announced on its TechNet site Thursday that customers can expect seven security bulletins this month: four for Microsoft Windows and three for Microsoft Office. Some fixes will address critical security holes, the vendor said.

Windows patches will be available via the Microsoft Baseline Security Analyzer and Enterprise Scan Tool, and some updates will require a restart. Office patches will be available via the Microsoft Baseline Security Analyzer and the updates may require a restart.

As it does every month, Microsoft will also release an updated version of its Windows Malicious Software Removal Tool and will host a Webcast Wednesday to address any questions IT administrators have regarding this month's updates. The company will also release one non-security, high-priority update Tuesday.

"Although we do not anticipate any changes, the number of bulletins, products affected, restart information and severities are subject to change until released," Microsoft said.

It's unclear if any of this month's patches will address some of the flaws that have come to light since Microsoft's June 13 patch release. Since then:

  • Several new Internet Explorer flaws have been targeted with exploit code.

  • Cupertino, Calif.-based antivirus giant Symantec Corp. has warned of proof-of-concept code targeting a security hole in Microsoft Windows Live Messenger, the instant messaging client formerly called MSN Messenger.

  • Zero-day flaws in Microsoft Excel have been targeted with exploit code.

    Last month's patch release addressed flaws in Windows, Internet Explorer, Exchange, Media Player, PowerPoint and Word.

    Tags: Security Patch ManagementSecuring Productivity ApplicationsWeb Browser SecurityVIEW ALL TAGS

    Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google



    RELATED CONTENT
    Security Patch Management
    Microsoft gives Internet Explorer a major security overhaul
    Information security book excerpts and reviews
    What patch management metrics does Project Quant use?
    Squad: Tokenization, Phishing and the Feds
    Should management processes change based on a patch release schedule?
    Should Windows Mobile updates come from Microsoft?
    Adobe updates ColdFusion, JRun, Flex
    Trusteer CEO criticizes Adobe, touts better patch deployments
    Patch management study shows IT taking significant risks
    Vulnerability mitigation study shows need for faster patching

    Securing Productivity Applications
    Adobe issues patch fixing month-long PDF zero-day vulnerability
    Another PDF attack targets Adobe zero-day vulnerability
    Active PDF attacks target Reader, Acrobat zero-day vulnerability
    Software piracy group offers cash to whistleblowers
    How to secure a .pdf file
    How do hackers bypass a code signing procedure to inject malware
    Quiz: How to build secure applications
    How to detect software tampering
    Adobe fixes 29 flaws in Acrobat, Reader
    Adobe warns of critical update for Reader, Acrobat 9.1.3

    Web Browser Security
    Microsoft warns that IE zero-day vulnerability causes data leakage
    Browser exploit kit probe highlights need for patching, vigilance
    Google to pay for Chrome browser vulnerabilities
    Attackers continue barrage of SEO attacks
    Microsoft emergency IE update to block latest corporate attacks
    Facebook, McAfee partner to fix social network security issues
    Firefox, Opera, Safari browsers top list of high risk software
    Mozilla fixes Firefox critical memory corruption errors
    FBI estimates rogue antivirus losses exceeding $150 million
    Adobe updates Flash Player, fixes seven serious vulnerabilities
    Web Browser Security Research

    RELATED GLOSSARY TERMS
    Terms from Whatis.com − the technology online dictionary
    attack vector  (SearchSecurity.com)
    back door  (SearchSecurity.com)
    ethical worm  (SearchSecurity.com)
    Patch Tuesday  (SearchSecurity.com)
    zero-day exploit  (SearchSecurity.com)

    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary



    • More Tips to Secure Your Network
    TechTarget Security Media
    Information Security View this month\\'s issue and subscribe today.
    Information Security Decisions Apply online for free conference admission.
    		SearchSecurity.com
    HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
    SEARCH :     Site Index Powered by: Search Powered by Google

    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Site Map




    All Rights Reserved, Copyright 2003 - 2010, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts