News Stay informed about the latest enterprise technology news and product updates.

Microsoft to issue Windows, SQL Server updates

Microsoft said it would repair vulnerabilities in SQL Server and Windows that could allow an elevation of privilege, spoofing and remote code execution.

Microsoft plans to issue four updates this week to repair flaws in Windows and SQL Server that could be exploited to conduct spoofing attacks and execute code remotely.

Microsoft updates:
Microsoft addresses XSS in Internet Explorer:  A cross-site scripting filter and additional security features for developers will help defend against attacks. 
Inside MSRC: Bluetooth, Internet Explorer issues explained: Microsoft's Bill Sisk addresses issues with the Bluetooh stack and a vulnerability in Internet Explorer.

Microsoft patches Bluetooth, Internet Explorer flaws: Dangerous holes in the Bluetooth stack in Windows could allow remote code execution.

In its advance notification issued last week on its TechNet site, Microsoft said the flaws affected software in Windows, SQL Server and Exchange Server. The bulletins have been rated important by the software maker and will be issued Tuesday afternoon as part of Mircosoft's Patch Tuesday bulletins.

The flaws are in Microsoft SQL Server 2000 Desktop Engine and Windows Internal Database Service Pack 2. Microsoft said the Windows Server 2008 server core installation is affected by the updates.

Bill Sisk, the response communications manager for the Microsoft Security Response Center, (MSRC) said the update will include improvements to the infrastructure of the Update Agent. The new agent will be improved to shorten the length of time it takes Windows Update to scan and receive updates.

Last month Microsoft issued three updates to address critical flaws affecting Bluetooth, DirectX and Internet Explorer. The software maker also issued an update to correct a problem with the System Center Configuration Manager 2007, which was blocking some updates.

Microsoft will also conduct a webcast about the bulletins on Wednesday at 11 a.m. PST.

Dig Deeper on Microsoft Windows security

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.