Microsoft patches critical Windows kernel flaw

By Robert Westervelt, News Editor 10 Mar 2009 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

Microsoft patched critical vulnerabilities in the Windows kernel that could be remotely exploited by an attacker to gain control of a computer. In all three bulletins patching eight Windows flaws were released Tuesday as part of Microsoft's monthly patching cycle.

SearchSecurity.com: To get security news and tips delivered to your inbox, click here to sign up for our free newsletter.

Microsoft's MS09-006 bulletin is rated critical for Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008. The kernel contains three vulnerabilities, a remote code execution vulnerability, rated critical, and two elevation of privilege vulnerabilities, rated important. Validation errors in the kernel graphics rendering component could be exploited to install programs; view, change, or delete data; or create new accounts with full user rights.

Microsoft updates: Feb. - Microsoft fixes critical IE 7, Exchange flaws: Memory corruption errors in IE 7 and a message processing error in Exchange leave systems vulnerable to attack, Microsoft said. Jan. - Microsoft updates critical SMB server flaws: The latest Microsoft security update addresses two critical remote code execution vulnerabilities and a denial-of-service flaw in the Server Message Block. Dec. - Microsoft issues emergency patch to fix IE flaw   Dec. - Microsoft fixes critical flaws in Office, IE

An end user can fall victim to an attack by opening a malicious email attachment or browsing to a malicious website that contains a malicious .WMF or .EMF picture file. But Microsoft gives the flaw a "3" on its exploitability index, indicating that exploit code is unlikely in the wild, said Andrew Storms, director of security operations at security and compliance auditing vendor nCircle Network Security Inc..

"Microsoft is saying that it's a pretty darn critical and nasty bug in Windows and easy to get users to go to a malicious website, but the exploit index says its more than likely not going to happen because it's very difficult to exploit this piece of code," Storms said. "It's still important to get it patched."

The MS09-007 bulletin is rated important and addresses a vulnerability in authentication handling of Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. The vulnerability is within Microsoft Windows Secure Channel, which processes SSL and TLS digital signatures. The update corrects the way Secure Channel parses key exchange data during the TLS handshake. A similar vulnerability was updated by Microsoft in 2007.

SearchSecurity radio:

Windows Domain Name Server (DNS) and Windows Internet Name Service (WINS) server was also updated in the MS09-008 bulletin. The update blocks four spoofing vulnerabilities that could be used by an attacker to cause DNS cache poisoning and redirect network traffic intended for systems on the Internet to the attacker's own systems. It's the third time in two years that the naming servers have been updated. In 2008, a group ofDNS vendors released coordinated updates to block a critical flaw discovered by security researcher Dan Kaminsky, director of penetration testing at IOActive Inc.

Remaining unpatched is an unspecified remote code-execution vulnerability in Microsoft Excel. Antivirus vendors Symantec Corp., McAfee Inc. and others detected a Trojan in the wild attempting to exploit the flaw. Microsoft acknowledged the zero-day flaw and said it was preparing a fix. Attacks have been extremely limited and targeted.

Tags: Windows Security: Alerts, Updates and Best Practices,  Security Patch Management,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Windows Security: Alerts, Updates and Best Practices Exploit code targets Internet Explorer zero-day display flaw Windows 7 DoS flaw allows hackers to freeze Microsoft's newest OS Microsoft patches serious Windows kernel flaws Microsoft to address flaws in Windows, Office for Mac Microsoft fixes security update that breaks Internet Explorer What is the best database patch management process? Microsoft addresses critical SMBv2 flaw, fixes record number of flaws Microsoft to address SMB zero-day, IIS FTP Service vulnerabilities Microsoft releases temporary fix for SMB2 zero-day vulnerability Microsoft issues SMB vulnerability advisory, patch pending Security Patch Management Squad: Tokenization, Phishing and the Feds Should management processes change based on a patch release schedule? Should Windows Mobile updates come from Microsoft? Adobe updates ColdFusion, JRun, Flex Trusteer CEO criticizes Adobe, touts better patch deployments Patch management study shows IT taking significant risks Vulnerability mitigation study shows need for faster patching Microsoft to issue security report card, new tool at Black Hat How to manage patches for Adobe When is it suitable to remove Java updates?

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary BotHunter  (SearchSecurity.com) principle of least privilege (POLP)  (SearchSecurity.com) security identifier  (SearchSecurity.com) trusted computing  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary