Microsoft August Updates



Incidents.org has an initial list of the updates today from Microsoft, there is also a brief from Microsoft on the updates. It appears as though one is Powerpoint specific, another is Office releated, one is tagged as an Internet Explorer update and the rest Windows. More details later in the day. Hopefully we can get more details from the technet security page when it’s updated.

Update…. Details time…


In addition to Sans (Incidents.org) having updated the first diary entry above… they have a good chart of upgrade priorities which distinguishes between system roles. Obviously Office vulnerabilities might not be a critical issue on a server, while a vulnerability that could allow for worm propogation is critical on everything.

There are non-critical non-security updates from Microsoft this month as well. (Junk mail filter for Outlook update, Infopath 2003, Malicious software removal tool.) US-CERT has information on active in the wild exploitation of at least one of the vulnerabilities. The most critical of the vulnerabilities is MS06-040 which is a vulnerability in the server service and has been reported as the most likely to be exploited by a worm or self-replicating virus.

The security Fix get’s into the details as well. Brian notes that the updates patch 23 flaws, one of the oldest Internet Explorer related flaws was reported in 2004. Also, he reminds that for Office 2000 users, they will have to manually check for updates.

Several that post on the Security Fix site have asked about any known problems with the updates. That is not yet known, however in recent months there have been problems with at least one update a month it seems. Let’s hope that MS06-040 is one that they got right the first patch.

Related Posts

Blog Traffic Exchange Related Posts
  • The security of remote tech support (ultravnc sc or x11vnc with wrapper script) Well, I've got a nice way of doing "easy" one click (or one cut and paste) light desktop support for windows or linux, one uses ultravnc sc, the other uses x11vnc with a special wrapper script. So, what security flaws are there in this process? Well, for starters, I see......
  • Microsoft fixes security fix.... Well, for the second month in a row (I don't recall one in March..) Microsoft has re-released a patch for Windows. This time it's the Flash patch (which really falls under 3rd party software). They've re-worked the version detection of the update in an attempt to solve all the problems......
  • Microsoft October 2006 patch Tuesday The first thing I should mention is that this months update from Microsoft is the last for XP SP1 users should plan a migration path to SP2 to keep getting updates to XP. Multiple vulnerabilities this month have been patched in Office There are 4 advisories, but a total of......
Blog Traffic Exchange Related Websites
  • 3 steps Forward.... I scored a new computer! A slightly used Dell Server, big, as in VERY BIG, desktop tower. It's running Windows XP, and soon will dual boot with Ubuntu Linux (I may get a second harddrive and see what's possible by way of a 'hackintosh' for a 3rd OS)! I missed......
  • My Prosper Internal Rate of Return Update (End of August 07) = 2.75% This is a RateLadder only IRR update. (An IRR lender “game” update is in the works.) I was involved with my first default debt sale.  I sold 1 AA loan for 25% of prinicpal. Here is my permanent tracking page: http://rateladder.com/my-prosper-irr/ My Prosper IRR is defined as: Monthly cash flows......
  • How to Install a Window Air Conditioner the Right Way As summer approaches, those of us without central air are getting ready to go through the annual ritual of installing our window air conditioners. However, were you aware that a bad installation can actually raise your electricity costs and make it harder to say cool? Here are some tips to......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site