Microsoft security roundup
OK – there have been a number of Excel problems floating around in the last week – week and a half. Securiteam blog has a FAQ on the Excel 0-day vulnerabilities with Excel and Excel Viewer Incidents.org kindly gives us a scoresheet documenting the three different vulnerabilities that have been recently exploited. I have not thoroughly read details, but suspect that avoiding opening unexpected xls attachments would likely be a GOOD preventative measure. If you take the attitude… “oh junk mail…. ooo attachment – wonder whats in there – let’s see…” then you’re likely already stuck by a few viruses.
The other bit of Microsoft security news is the update to the MS06-025 patch from last week (week before I believe.) It turns out the original patch broke (caused problems with) dialup. Given that there’s an updated update – be sure to patch because the underlying vulnerability IS being actively exploited. (Are we up to 3 patches in this year that have caused other issues and had to be re-released? I wonder if that indicates a shift in Microsoft’s patch cycle testing?)
Popularity: 1% [?]
Related Posts - Windows updates for February could set record There could be a record number of vulnerabilities addressed next week when Microsoft releases an expected dozen updates for its Windows and Office products. (According to Brian Krebs at the Security Fix.) Tuesday February 13th is the date scheduled for the release of updates. One critical udpate will affect Microsoft's......
- Microsoft's unpatched security bugs George Ou at ZDnet is mystified (as many of us are) at why Microsoft can't patch ALL their security vulnerabilities. Most of the unpatched vulnerabilities are considered minor (as was the 6 month old bug that in the last week was discovered could be exploited for more than a Denial......
- Microsoft August Updates Incidents.org has an initial list of the updates today from Microsoft, there is also a brief from Microsoft on the updates. It appears as though one is Powerpoint specific, another is Office releated, one is tagged as an Internet Explorer update and the rest Windows. More details later in the......
Related Websites - Microsoft Security Advisory (2286198): Vulnerability in Windows Shell Could Allow Remote Code Execution Vulnerability in Windows Shell Could Allow Remote Code Execution Published: July 16, 2010 Version: 1.0 General Information Executive Summary Microsoft is investigating reports of limited, targeted attacks exploiting a vulnerability in Windows Shell, a component of Microsoft Windows. This advisory contains information about which versions of Windows are vulnerable as......
- Review of Windows Live Writer When you find a tool that makes life easier, there is nothing more exciting. The need for corporations to simplify and systematize their processes has to do with working smart and taking advantage of things that allow workers to reach their goals without having to work quite as hard. One......
- 3 Essential Tools For Your Internet Home Based Business Part of the reason why so many people fail online in their home based business is because they fall into information overload. Save yourself lots of headaches by focusing on these three tools. Hosting/Domain Autoresponder Blog Domain name and Hosting For Your Home based business. Many times you can host......
Similar Posts
- Out of Cycle Windows Update – Patch Today
- 7 Updates coming from Microsoft in July
- Another problem with one of the Microsoft Patches…
- Microsoft fixes security fix….
- Microsoft releases official VML patch!!