Microsoft August Updates



Incidents.org has an initial list of the updates today from Microsoft, there is also a brief from Microsoft on the updates. It appears as though one is Powerpoint specific, another is Office releated, one is tagged as an Internet Explorer update and the rest Windows. More details later in the day. Hopefully we can get more details from the technet security page when it’s updated.

Update…. Details time…


In addition to Sans (Incidents.org) having updated the first diary entry above… they have a good chart of upgrade priorities which distinguishes between system roles. Obviously Office vulnerabilities might not be a critical issue on a server, while a vulnerability that could allow for worm propogation is critical on everything.

There are non-critical non-security updates from Microsoft this month as well. (Junk mail filter for Outlook update, Infopath 2003, Malicious software removal tool.) US-CERT has information on active in the wild exploitation of at least one of the vulnerabilities. The most critical of the vulnerabilities is MS06-040 which is a vulnerability in the server service and has been reported as the most likely to be exploited by a worm or self-replicating virus.

The security Fix get’s into the details as well. Brian notes that the updates patch 23 flaws, one of the oldest Internet Explorer related flaws was reported in 2004. Also, he reminds that for Office 2000 users, they will have to manually check for updates.

Several that post on the Security Fix site have asked about any known problems with the updates. That is not yet known, however in recent months there have been problems with at least one update a month it seems. Let’s hope that MS06-040 is one that they got right the first patch.

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft June Patch Cycle heads up It's about that time again folks.... Monthly Microsoft patch cycle - June patches will be released on the 13th (next Tuesday) and it looks like a big batch. There should be 12 patches this time and at least one of the Windows updates is Critical and at least one of......
  • Big Windows June update day Updates for Windows for the month of June are out today and it looks like some list! 12 updates covering 20 or more vulnerabilities. MANY of these are tagged as critical. (Critical vulnerabilities are considered remotely exploited or with little (or no) user interaction.) Sans has a good listing of......
  • Apple Quicktime and OS X updates to patch multiple security vulnerabilities Apple has released Quicktime v. 7.1 for both Windows and OS X to address about 12 vulnerabilities. It looks as though all of the vulnerabilities were related to either a specially crafted images or movies (a variety of formats...) Upgrade or use another viewer... Affected file formats are.... Jpegs, Flashpix,......
Blog Traffic Exchange Related Websites
  • World Wide Web Security Essentials Is Not A Real Spyware Remover. It Resembles The Functions And Looks World wide web Security Essentials is not a real spyware remover. It resembles the functions and looks of genuine spyware removal software but has no capacity to eliminate any virus, trojan or malware. Web Security Essentials is the newest addition to the growing list of rogue Antivirus programs. Internet Security......
  • iYogi iYogi is the world’s-fastest growing provider of comprehensive direct-to-consumer and small business remote tech support.With McAfee Sec - UR -rity ... U R at the center. Get Free Tech Support for Installation and Setup iYogi has more than 200,000 consumer and small business customers across four countries for its......
  • 3 steps Forward.... I scored a new computer! A slightly used Dell Server, big, as in VERY BIG, desktop tower. It's running Windows XP, and soon will dual boot with Ubuntu Linux (I may get a second harddrive and see what's possible by way of a 'hackintosh' for a 3rd OS)! I missed......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site