Microsoft to plug security holes

Powered by SC Magazine
 

Advance warning of fixes.

Microsoft will next week launch a number of security fixes designed to address vulnerabilities issues in ActiveX and DirectShow, among other systems.

According to Microsoft, the weaknesses have already attracted the attention of hackers and the firm is keen to fix them in its monthly patch update, set for 14 July.

Three of the issues are rated as 'critical' while the remaining three are rated as 'important'. Microsoft is urging users to fix the issues as soon as possible and has provided guidance for firms on how best to prepare themselves for the patches.

Writing on his blog, Jerry Bryant of Microsoft's security response team said, "I want to provide some clarity on two of the pending Windows updates mentioned. First, we will be addressing the issue concerning a vulnerability in DirectShow. As noted in the advisory, we are aware of limited active attacks and we have been working aggressively to get a quality update shipped to customers.

"Second, our engineering teams have been working around the clock to produce an update for the issue discussed in Security Advisory 972890 (vulnerability in the Microsoft Video ActiveX Control) and we believe that they will be able to release an update of appropriate quality for broad distribution that protects against the attacks we detailed in the advisory and in an MSRC blog post by Christopher Budd."

Bryant encouraged customers in the meantime to continue to enable the workaround for the latter vulnerability "by running the 'Microsoft Fix it' solution in the associated knowledge base article (KB972890)".

He also urged users to visit the Microsoft Security Research and Defence blog as well as the MSRC site on Tuesday for additional information.

Copyright ©v3.co.uk


Microsoft to plug security holes
 
 
 
Top Stories
Making a case for collaboration
[Blog post] Tap into your company’s people power.
 
Five zero-cost ways to improve MySQL performance
How to easily boost MySQL throughput by up to 5x.
 
Tracking the year of CIO churn
[Blog post] Who shone through in 12 months of disruption?
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest articles on BIT Latest Articles from BIT
This 4G smartphone costs $219
Sep 3, 2014
It's possible to spend a lot less on a smartphone if you're prepared to go with a brand you ...
Looking for storage? Seagate has five new small business NAS devices
Aug 22, 2014
Seagate has announced a new portfolio of Networked Attached Storage (NAS) solutions specifically ...
Run a small business in western Sydney?
Aug 15, 2014
This event might be of interest if you're looking to meet other people with a similar interest ...
Buying a tablet? Microsoft's Surface Pro 3 goes on sale this month
Aug 8, 2014
Microsoft has announced its Surface Pro 3 will go on sale in Australia on 28 August from ...
Apple's top MacBook Pro with Retina is now cheaper
Aug 1, 2014
Apple has updated its MacBook Pro range with faster processors and new pricing, including ...
Latest Comments
Polls
Which is the most prevalent cyber attack method your organisation faces?




   |   View results
Phishing and social engineering
  69%
 
Advanced persistent threats
  4%
 
Unpatched or unsupported software vulnerabilities
  10%
 
Denial of service attacks
  6%
 
Insider threats
  11%
TOTAL VOTES: 1085

Vote