Journal jginspace's Journal: Patch Tuesday - Pick an exploit, any exploit 1
As per last Thurday's advance notification Microsoft has just released five general Windows updates and one for XML. So what's new? Well a grand total of five are rated 'critical'.
We have the omni-present Cumulative Security Update for Internet Explorer (922760) - pay particular attention to the "HTML Rendering Memory Corruption Vulnerability" - and a nasty-sounding "Vulnerability in Workstation Service".
Last month Microsoft Office took the limelight; this month "Remote Code Execution" targetting the core services seems to be de rigeur. Keep your systems patched, don't run unecessary services and don't run more than you have to as administrator. Sign up for notifications here.
Update: Vnunet says the vulnerabilities in XML and IE's DirectAnimation ActiveX control are already being actively exploited. Sans reports that the exploit for the workstation service is out in the wild.
We have the omni-present Cumulative Security Update for Internet Explorer (922760) - pay particular attention to the "HTML Rendering Memory Corruption Vulnerability" - and a nasty-sounding "Vulnerability in Workstation Service".
Last month Microsoft Office took the limelight; this month "Remote Code Execution" targetting the core services seems to be de rigeur. Keep your systems patched, don't run unecessary services and don't run more than you have to as administrator. Sign up for notifications here.
Update: Vnunet says the vulnerabilities in XML and IE's DirectAnimation ActiveX control are already being actively exploited. Sans reports that the exploit for the workstation service is out in the wild.
Amazing (Score:2)