Microsoft to patch critical Windows, Excel flaws

By SearchSecurity.com Staff 04 Dec 2008 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

Microsoft said it plans to release patches next week to plug six critical vulnerabilities in Windows, Visual Basic, Internet Explorer, Excel and Word.

SearchSecurity.com: To get security news and tips delivered to your inbox, click here to sign up for our free newsletter.

The preliminary information was issued by the software giant Thursday as part of its security bulletin advance notification on its TechNet site. Details will be released Dec. 9 when the bulletins are made public. Microsoft is also hosting a webcast to discuss the bulletins on Dec. 10.

Microsoft will also issue patches rated important for Sharepoint server and Windows Media Player.

The flaws affect Microsoft Windows 2000 Service Pack 4, Windows XP Service Pack 2 and 3, Windows Vista and Windows Vista Service Pack 1, Windows Server 2003 Service Pack 1 and 2 and Windows Server 2008.

In November, Microsoft repaired three flaws in XML Core Services and a remote code execution vulnerability in the Server Message Block. Microsoft is also continuing to track infections as a result of malware attempting to exploit a remote procedure call (RPC) flaw that was patched in its MS08-067 emergency bulletin.

Tags: Security Patch Management,  Windows Security: Alerts, Updates and Best Practices,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Security Patch Management Microsoft gives Internet Explorer a major security overhaul Information security book excerpts and reviews What patch management metrics does Project Quant use? Squad: Tokenization, Phishing and the Feds Should management processes change based on a patch release schedule? Should Windows Mobile updates come from Microsoft? Adobe updates ColdFusion, JRun, Flex Trusteer CEO criticizes Adobe, touts better patch deployments Patch management study shows IT taking significant risks Vulnerability mitigation study shows need for faster patching Windows Security: Alerts, Updates and Best Practices Microsoft to fix 26 flaws in Windows, Office Microsoft warns that IE zero-day vulnerability causes data leakage Microsoft issues critical security update, blocks IE 6 attacks Microsoft emergency IE update to block latest corporate attacks Latest zero-day attacks only target IE 6, Microsoft says Hackers used IE zero-day in Google, Adobe attacks, McAfee says Microsoft issues advisory on Internet Explorer zero-day Microsoft releases Windows OpenType Font Engine patch Microsoft to patch single Windows 2000 vulnerability IIS configuration error leads to increased threat, Microsoft says

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary attack vector  (SearchSecurity.com) back door  (SearchSecurity.com) ethical worm  (SearchSecurity.com) Patch Tuesday  (SearchSecurity.com) zero-day exploit  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary