Record 64 flaws to be fixed on Patch Tuesday

Powered by SC Magazine
 

Long-awaited fix for MHTML flaw.

Microsoft is issuing a security update to fix a record 64 vulnerabilities, including a months-old MHTML flaw.

Of the 17 patches, nine are rated critical and eight are important, according to Microsoft. They cover flaws in Windows, Office, Internet Explorer, Visual Studio and more.

The update addresses a MHTML flaw uncovered in January. Google said last month that the vulnerability was being used in "politically motivated" attacks against its users.

"This is a huge update and system administrators should plan for deployment as all Windows systems including Server 2008 and Windows 7 are affected by critical bulletins," advised Amol Sarwate, manager of the vulnerability research lab for security firm Qualys.

"Frequently used office applications like Excel 2003 through 2010 and PowerPoint 2002 through 2010 are also affected."

Paul Voss, senior response communications manager with Microsoft, said the software giant would also shut down several security alerts, including a critical one in Server Message Block Browser.

"Microsoft assessed the situation and reported that although the vulnerability could theoretically allow Remote Code Execution, that was extremely unlikely," Voss said in a post on the Microsoft security blog.

"To this day, we have seen no evidence of attacks."

This article originally appeared at pcpro.co.uk

Copyright © PC Pro, Dennis Publishing


Record 64 flaws to be fixed on Patch Tuesday
 
 
 
Top Stories
ANZ looks to life beyond the transaction
If digital disruptors think an online payments startup could rock the big four, they’ve missed the point of why people use banks, says Patrick Maes.
 
What InfoSec can learn from the insurance industry
[Blog post] Another way data breach laws could help manage risk.
 
A ten-point plan for disrupting security
[Blog post] How can you defend the perimeter when it’s in the cloud?
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
What is delaying adoption of public cloud in your organisation?







   |   View results
Lock-in concerns
  29%
 
Application integration concerns
  3%
 
Security and compliance concerns
  27%
 
Unreliable network infrastructure
  9%
 
Data sovereignty concerns
  21%
 
Lack of stakeholder support
  3%
 
Protecting on-premise IT jobs
  4%
 
Difficulty transitioning CapEx budget into OpEx
  3%
TOTAL VOTES: 1041

Vote