Eight flaws fixed in latest Microsoft patch release

Powered by SC Magazine
 

Microsoft has released its latest monthly security fix, addressing eight vulnerabilities in its Windows operating systems.

The March edition of the company's 'Patch Tuesday' update schedule patches the flaws in a series of three bulletins.

Two of the bulletins are rated as 'important' by the company while a third is rated as 'critical.'

The critical fix contains patches for three vulnerabilities in the Windows kernel. The vulnerabilities center around a flaw in the handling of emf and wmf image files which could potentially allow an attacker to remotely execute code on a targeted system.

That fix is being issued for Windows 2000, XP and Vista as well as the Server 2003 and 2008 releases.

The first of the two bulletins rated as 'important' addresses a single vulnerability in the operation of the Secure Channel component in Windows 2000, XP, Vista and both Server versions. If targeted, that flaw could allow for spoofing attacks.

The third bulletin contains fixes for four different flaws in the DNS and WINS components which could also allow an attacker to spoof and redirect network traffic. The update only applies to Server 2003 and 2008, other versions of Windows are not affected.

Two of the four flaws had been previously reported to the public, and the company notes that there is a higher likelihood of the flaws being targeted than the other vulnerabilities being addressed this month.

Users can obtain the update from the Microsoft Update service in Windows or online from the company's download site.

Copyright ©v3.co.uk


Eight flaws fixed in latest Microsoft patch release
 
 
 
Top Stories
NSW Govt gets ready to throw out the floppy disks
[Opinion] Dominic Perrottet says its time for government to catch up.
 
iiNet facing new copyright battle with Hollywood
Fighting to protect customer details.
 
The CISO’s dilemma: Do you trust your partner’s partner?
[Blog post] How far down the chain do you check?
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  25%
 
Sourcing and strategy
  12%
 
IT infrastructure (servers, storage, networking)
  22%
 
End user computing (desktops, mobiles, apps)
  15%
 
Software development
  26%
TOTAL VOTES: 310

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  58%
 
No
  42%
TOTAL VOTES: 118

Vote