Microsoft to squash 23 bugs next month

Powered by SC Magazine
 

Includes two "critical" and six "important" fixes.

Microsoft expects to release eight patches to address 23 security vulnerabilities in Windows and other products next month.

The bulletins, of which two are rated “critical” and six  “important,” are due 11 October.

The critical patches will address flaws in Microsoft Windows, Internet Explorer, Silverlight, and the company's .NET framework that could allow for the propagation of an internet worm without user action, according to an advance notification advisory.

The important fixes will correct issues that could result in users' data being compromised or cause a denial of service.

One of the important bulletins is particularly interesting because it affects ­Forefront Unified Access Gateway, security software used by employees for remote access, Rapid7 security researcher Marcus Carey said.

“No one wants to hear that software that is designed for security is vulnerable to remote code execution,” Carey said.

“This bulletin and the related vulnerabilities will definitely pique a lot of attackers' interest. Organisations should keep an eye out for suspicious activity on servers running this software.”

Nearly all of the patches, meanwhile, will require a restart, which will cause widespread disruptions across both internet-connected servers and user community desktops, according to Paul Henry, security and forensic analyst at vulnerability management firm Lumension.

Microsoft last month released five security bulletins correcting six vulnerabilities in SharePoint, Excel, Office, Windows and the Windows Internet Name Service.

This article originally appeared at scmagazineus.com

Copyright © SC Magazine, US edition


Microsoft to squash 23 bugs next month
 
 
 
Top Stories
The iTnews Benchmark Awards
Meet the best of the best.
 
Telstra hands over copper, HFC in new $11bn NBN deal
Value of 2011 deal remains intact.
 
Photos: iTnews Benchmark 2015 finalists revealed
Awards alumni gather to celebrate.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest articles on BIT Latest Articles from BIT
More 4G from Optus in Darwin
Nov 21, 2014
Click to see where Optus has expanded coverage to the suburbs near Darwin.
Optus steps up regional 4G coverage
Nov 20, 2014
Once 700Mhz services are working, Optus claims regional users will have a "faster and more ...
This Huawei 4G phone costs $99
Nov 12, 2014
The $99 Huawei Ascend Y550, available through Vodafone, enters the budget market as one of the ...
4G smartphones: Microsoft's Lumia 830
Nov 7, 2014
Microsoft has announced its flagship Windows Phone, the Nokia Lumia 830 4G, will be available in ...
Do you direct debit customers? Read this
Oct 10, 2014
Authorities have been targeting direct debit practices with iiNet and Dodo receiving formal ...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  39%
 
Your insurance company
  4%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  7%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 1740

Vote
Do you support the abolition of the Office of the Information Commissioner?