Raft of Microsoft updates out – time to get updating



The promised batch of windows updates for today are now out and it turns out there were 3 critical updates out of the 6 released. It looks as though the biggy is an RPC problem with the plug and play system (Plug and play needing a remote procedure call?) This is one that could likely be quickly exloited. There is a workaround on this of having port 139 and 445 firewalled (many places do that by default now, last I checked my ISP does.) Don’t take that as a tool for complacence though. Patch it anyway!



Apparently the Plug and Play bug is only critical for Windows 2000. There is a patch rollup for Internet Explorer as well, which is important to protect against all the spyware exploits that have been discussed here lately. It’s an important update whether or not you use Explorer to browse the web. Going through Windows update these days requires the Windows Genuine Advantage authenticity test. If that fails you can setup automatic updates under 2000, XP or server 2003. These all bypass the test.

So I guess we can look forward to seeing lots of network traffic from the next great web worm that hits pirated copies of windows around the world. Personally, I think security updates should be available no matter what. Add ons like Movie maker, media player, fine check for tickets at the door so to speak, but let everyone keep their box secure or the whole computing community suffers.

Related Posts

Blog Traffic Exchange Related Posts
  • WMF vulnerability advisory update Microsoft has updated their security bulletin on the WMF vulnerability to note a couple things. One, they acknowledge that embedded images within a document can trigger the exploit. Previously they said this needed further investigation. Second, they are seconding what I've been finding that Windows 98 and other pre-XP systems......
  • Microsoft Releasing out of Cycle Patch for Internet Explorer Exploit Take a look at the official announcement. They've moved outside the usual update cycle for this one. VERY good move Microsoft to get this patch in before the holidays as it looks as though there's been a spike in the use of this particular exploit and with people doing a......
  • March Microsoft Updates - etc. I can't believe it's been so long without a post - last post was the last MS update cycle. I've been trying to avoid spending almost every waking hour at a computer for a while. Anyway, advance notice for the March Microsoft updates came out and it appears as though......
Blog Traffic Exchange Related Websites
  • IMPORTANT POINTS ABOUT WEB SITE DESIGN The massive growth of the internet has spawned huge growth in another industry – that of web design.   There are many, many people calling themselves website designers – yet a huge proportion of those don’t know even the basics about how to design websites that WORK!.  A fancy-looking looking website......
  • Lending Club Update: Earning 14% ROI on P2P Lending Investments ~ ~ ~ April 2011 Update: Shutting Down My Lending Club Investments over Q&A Change ~ ~ ~ ~ ~ ~ December 2010 Update: Earning 15.6% NAR on Lending Club investment portfolio. ~ ~ ~   Similar to last quarter's Lending Club investment results and summary, I'm happy to report......
  • What is Google Panda Update and How To Stay Safe Google Panda is the brand-new search engine algorithmic program of Google that was began back in March. The update was to support higher quality linked websites and to penalize all the web sites with poor-quality content and backlinks. This approach is opposite to that of their competitors such as Yahoo......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site