Microsoft warns of major Patch Tuesday update

Powered by SC Magazine
 

Covers 25 flaws, five rated 'critical'.

Microsoft has released its advanced notification for April's Patch Tuesday update, which will address 25 problems in 11 security bulletins.

Five of the vulnerabilities are rated 'critical', and apply to enterprise applications including Microsoft Office and Exchange. Affected operating systems include Windows 2000, XP, Vista, 2003, 2008 and Windows 7.

The critical flaws could allow a remote attacker to take control of a machine, install malicious software, or contribute to a denial-of-service attack.

Alan Bentley, vice president at security firm Lumension, urged IT departments to prepare for the patches well in advance.

"IT departments will have to address and patch almost every endpoint in the organisation, including servers, laptops and desktops," he said.

"They should plan ahead as to how they are going to test and then deploy these patches with minimal interruptions to employee productivity."

Wolfgang Kandek, chief technology officer at vulnerability management firm Qualys, agreed that this month's large security update will keep system administrators busy.

"An attacker can use these vulnerabilities to remotely execute code on the victim's machine, and they should be addressed as quickly as possible," he said.

However, Kandek added that Windows 7 has been left relatively unpatched, suggesting that it is a more secure platform that previous releases.

"Windows 7 has fewer critical updates to install than the older operating system versions, an indication that the newer version of Windows is more robust and secure out of the box," he said.

Many of the fixes require a system restart, according to Microsoft, and just one earns the lowly rating of 'moderate'.

One of the problems likely to be patched is the F1 key issue reported earlier this year that affects Internet Explorer.

Copyright ©v3.co.uk


Microsoft warns of major Patch Tuesday update
 
 
 
Top Stories
Change is the only constant at iiNet
iiNet's Matthew Toohey is trialling IBM's Watson - between preparing for an acquisition and making sure Netflix doesn't swamp the network.
 
Why straight-through processing is the holy grail for banks
Big benefits from stripping away human intervention and digitising processes.
 
CBA sued over frozen millions in IT bribery scandal
Eric Pulier's not-for profit lodges lawsuit in US.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest articles on BIT Latest Articles from BIT
New features are coming to Outlook.com
May 27, 2015
Outlook.com, thanks to its predecessor Hotmail.com, is one of the world's major webmail services ...
Windows 10 to feature integrated apps for Android and iOS
May 27, 2015
Microsoft reveals multi-platform Cortana connectivity for Windows 10. What the heck is that, and ...
Microsoft launches Office for Android preview
May 22, 2015
Microsoft has launched a preview of Office for Android smartphones. Pre-release versions of ...
Microsoft is working on an iOS email chat feature called Flow
May 22, 2015
Microsoft is working on a new chat app, but at the moment we know more about what we DON'T know, ...
Windows 10 free upgrade: Microsoft details who gets what
May 22, 2015
Microsoft was meant to be streamlining its OS with Windows 10, so why is upgrading so confusing? ...
Latest Comments
Polls
Should Optus make a bid for iiNet?

   |   View results
Yes
  44%
 
No
  56%
TOTAL VOTES: 669

Vote