Big Windows June update day



Updates for Windows for the month of June are out today and it looks like some list! 12 updates covering 20 or more vulnerabilities. MANY of these are tagged as critical. (Critical vulnerabilities are considered remotely exploited or with little (or no) user interaction.) Sans has a good listing of the advisories. This month it is a bit much to track in one big whallop… but I’ll try to give a summary here.


1 patch (well actually 8) is a rollup for Internet Explorer (4 of the 8 are critical) – so it’s a critical patch. (All versions of IE) There’s also a vulnerability with rendereding .ART image files (*AOL uses ART format apparently.)(everything from Win 98 -2003) There’s also a critical javascript vulnerability (everything from Win 98 -2003)… there’s a Media player vulnerability affecting just about any version of media player. And a RRA (Routing and Remote Access) vulnerability. RRA is essentially Remote Access Dial up Server for Windows Servers. Details on how this could be exploited here.

There’s a graphics rendering software patch for older Windows releases (ME 98 (SE too)). BTW Next month is the last scheduled patch day for those OS’s. Also, the Word vulnerability of the last months news… is patched (critical) and a Powerpoint vulnerability which is also a critical.

There are four other updates MS06-29 for Exchange is listed as Important, as is MS06-030 for SMB *(privilege escalation). There is one more Important update MS06-032 (IP source routing allows remote code execution) and a Moderate… MS06-031 (RPC mutual authentication spoofing.)

Further, MS06-011 was re-released. It was essentially to patch a privilege escalation vulnerability.

As always it’s DEFINITELY worth keeping up with windows updates. I highly recommend using the newer Microsoft Update tool (which covers Office software as well as the core Operating System updates.)

Related Posts

Blog Traffic Exchange Related Posts
  • Try another web browser - Mozilla Firefox Most people use Internet Explorer for windows and why not? It's preinstalled on every Windows PC. Well, there are a number of reasons to consider using another product. One is security. I'm not about to say that open source software does not have security vulnerabilities. It does. I have found......
  • F-Secure patches security vulnerabilities I've seen several reports on F-Secure's security bulletin about a code execution vulnerability. The announcement on the f-secure blog mentions that it affects several versions of their products on Windows and Linux. They're not currently aware of any attacks, but suggest patching pre-emptively. They also give a thanks to the......
  • Windows 98 WMF patch This hopefully will be my last post on the whole WMF exploit stuff.... It's prompted in part by a comment on one of the articles on Windows 98 and the vulnerability. I realized that I hadn't really brought things to a full conclusion for the Windows 98 users. Of course,......
Blog Traffic Exchange Related Websites
  • Tips on Buying a Laptop... [Alternative Title: How I saved a bundle on my latest laptop purchase...] If you happened to have read my article yesterday, you'd have caught this little tidbit: I think that I got a really good deal on a new-to-me (refurbished) laptop this week. My previous computer, a Dell Inspiron 1525......
  • Fishing the Big One in Lake Tahoe Lake Tahoe offers plenty of exceptional scenery making it worth the fishing trip price just to see the dawn as it tints the Sierras in lovely gold. Fishing is not very productive here since the lake tends to be too pure and clear for supporting a large population worth of......
  • Redsn0w updated to jailbreak iOS 4.2.1 final Apple recently released iOS 4.2.1 final. iOS 4.2.1 came with many new features and updates. In last post, I told you that Greenp0ison will be updated to support iOS 4.2.1. Now, Dev-team has also updated redsn0w to 0.9.6b4. redsn0w can be used to jailbreak iPhone, iPod & the iPad. redsn0w......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site