Home > Security News > Microsoft to issue critical Windows patch
Security News:
EMAIL THIS

Microsoft to issue critical Windows patch

By SearchSecurity.com Staff
08 Jan 2009 | SearchSecurity.com

Security Wire Daily News
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google

Microsoft is starting 2009 with a single security update, according to an advance notice issued by the software giant.

SearchSecurity.com:
To get security news and tips delivered to your inbox, click here to sign up for our free newsletter.

Microsoft said the security update corrects a critical flaw in Windows. The update is part of Microsoft's monthly patch release. It corrects a flaw that could be exploited to execute code remotely. The update is rated critical and affects Windows 2000, Windows XP, and Windows Server 2003. It is rated moderate for Windows Server 2008, and Windows Vista.

The update will require a restart and will be detectable using the Microsoft Baseline Security Analyzer.

Microsoft patching news:
Microsoft issues emergency patch to fix IE flaw: The software giant repaired a dangerous flaw being exploited if a user browses some legitimate websites.

Microsoft fixes critical flaws in Office, IE Dangerous flaws could allow an attacker to access sensitive files and gain complete control of a computer. More than two dozen flaws were patched.

Inside MSRC: Microsoft issues guidance on critical flaws Microsoft's Bill Sisk describes the latest bulletins and explains why new threat families were added to the Malicious Software Removal tool.

The software giant will also release an updated version of its Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center. Microsoft will also host a Security Bulletin Webcast so customers can ask questions about the latest fixes.

As part of its final official patch release of 2009, Microsoft issued eight security bulletins, including six rated critical, addressing serious flaws in Internet Explorer.

It also issued an emergency out-of-band patch for the XML handling flaw in Internet Explorer. Microsoft issued the emergency release because it said it was tracking attacks in the wild. Hackers were planting the exploit on websites using SQL injection techniques.



Tags: Windows Security: Alerts, Updates and Best PracticesSecurity Patch ManagementVIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google



RELATED CONTENT
Windows Security: Alerts, Updates and Best Practices
Microsoft to fix 26 flaws in Windows, Office
Microsoft warns that IE zero-day vulnerability causes data leakage
Microsoft issues critical security update, blocks IE 6 attacks
Microsoft emergency IE update to block latest corporate attacks
Latest zero-day attacks only target IE 6, Microsoft says
Hackers used IE zero-day in Google, Adobe attacks, McAfee says
Microsoft issues advisory on Internet Explorer zero-day
Microsoft releases Windows OpenType Font Engine patch
Microsoft to patch single Windows 2000 vulnerability
IIS configuration error leads to increased threat, Microsoft says

Security Patch Management
Microsoft gives Internet Explorer a major security overhaul
Information security book excerpts and reviews
What patch management metrics does Project Quant use?
Squad: Tokenization, Phishing and the Feds
Should management processes change based on a patch release schedule?
Should Windows Mobile updates come from Microsoft?
Adobe updates ColdFusion, JRun, Flex
Trusteer CEO criticizes Adobe, touts better patch deployments
Patch management study shows IT taking significant risks
Vulnerability mitigation study shows need for faster patching

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
BotHunter  (SearchSecurity.com)
principle of least privilege (POLP)  (SearchSecurity.com)
security identifier  (SearchSecurity.com)
trusted computing  (SearchSecurity.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



More Tips to Secure Your Network
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2010, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts