Microsoft October 2006 patch Tuesday



The first thing I should mention is that this months update from Microsoft is the last for XP SP1 users should plan a migration path to SP2 to keep getting updates to XP. Multiple vulnerabilities this month have been patched in Office There are 4 advisories, but a total of 15 issues covered by those four. Powerpoint, Excel, Word and Office/Publisher there are a variety of exploits, some public (like the powerpoint) others that were privately reported. Also, Incidents.org gives a nice summary of the advisories and the severity of each (urgency of updating.) The setslice vulnerability is patched in this batch by the way.


Unfortunately, this patch day has already had it’s share of problems Zdnet reports the following….

“Due to technical difficulties experienced on the Microsoft Update platform, security updates released today are not currently available via Microsoft Update, Automatic Updates, Windows Server Update Services or Windows Update v6,”

Which explains why the workstation that I led to windows update this afternoon saw that there were 0 new updates available….

Brian Krebs at the Security fix has a few good points as well… Two of these updates affect Vista. Also, among the Office updates, they are most critical on Office 2000, which is not serviced by automatic updates and so Office 2000 users SHOULD VISIT OFFICE UPDATE…. office.microsoft.com/en-us/officeupdate/

These days the focus of crackers seems to be client applications and the distribution of updates seems to reflect that. (Which makes it all the more important that even Office 2000 users get their updates.)

Related Posts

Blog Traffic Exchange Related Posts
  • Big Windows June update day Updates for Windows for the month of June are out today and it looks like some list! 12 updates covering 20 or more vulnerabilities. MANY of these are tagged as critical. (Critical vulnerabilities are considered remotely exploited or with little (or no) user interaction.) Sans has a good listing of......
  • Update on the Internet Explorer VML vulnerability Just catching up on the days VML vulnerability news from today.... It looks as though... the exploit is now MUCH more widespread this blog has some video of an infection, what's notable is that the first take was VERY UNEVENTFUL, it was used to stealthily install a keylogger. (So that......
  • Microsoft Update day for September.... AND Flash... AND Apple Yesterday, of course, Microsoft released it's monthly patches. I found the Windows update site to be painfully slow (and in some cases unresponsive.) It wasn't quite a huge update day by recent standards, but here's the summary.... Incidents.org has a nice chart showing the two re-released patches (one is actually......
Blog Traffic Exchange Related Websites
  • Microsoft Security Bulletin MS10-046 - Critical Microsoft Security Bulletin MS10-046 - Critical Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198) Published: August 02, 2010 | Updated: August 03, 2010 Version: 1.1 General Information Executive Summary This security update resolves a publicly disclosed vulnerability in Windows Shell. The vulnerability could allow remote code execution if the icon......
  • Lending Club Update: Earning 15.6% NAR on P2P Lending Investments ~ ~ ~ April 2011 Update: Shutting Down My Lending Club Investments over Q&A Change ~ ~ ~   My Lending Club investment portfolio is continuing to look fairly impressive as we close the books on 2010. Summary Net Annual Return is up to 15.64% NAR. My highest observed NAR was 15.69%,......
  • Lending Club Update: Earning 14% ROI on P2P Lending Investments ~ ~ ~ April 2011 Update: Shutting Down My Lending Club Investments over Q&A Change ~ ~ ~ ~ ~ ~ December 2010 Update: Earning 15.6% NAR on Lending Club investment portfolio. ~ ~ ~   Similar to last quarter's Lending Club investment results and summary, I'm happy to report......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site