Microsoft to squash 23 bugs next month

Powered by SC Magazine
 

Includes two "critical" and six "important" fixes.

Microsoft expects to release eight patches to address 23 security vulnerabilities in Windows and other products next month.

The bulletins, of which two are rated “critical” and six  “important,” are due 11 October.

The critical patches will address flaws in Microsoft Windows, Internet Explorer, Silverlight, and the company's .NET framework that could allow for the propagation of an internet worm without user action, according to an advance notification advisory.

The important fixes will correct issues that could result in users' data being compromised or cause a denial of service.

One of the important bulletins is particularly interesting because it affects ­Forefront Unified Access Gateway, security software used by employees for remote access, Rapid7 security researcher Marcus Carey said.

“No one wants to hear that software that is designed for security is vulnerable to remote code execution,” Carey said.

“This bulletin and the related vulnerabilities will definitely pique a lot of attackers' interest. Organisations should keep an eye out for suspicious activity on servers running this software.”

Nearly all of the patches, meanwhile, will require a restart, which will cause widespread disruptions across both internet-connected servers and user community desktops, according to Paul Henry, security and forensic analyst at vulnerability management firm Lumension.

Microsoft last month released five security bulletins correcting six vulnerabilities in SharePoint, Excel, Office, Windows and the Windows Internet Name Service.

This article originally appeared at scmagazineus.com

Copyright © SC Magazine, US edition


Microsoft to squash 23 bugs next month
 
 
 
Top Stories
Soft drinks and SoftLayer: A solution for hard times?
Coca-Cola Amatil's CIO Barry Simpson shares his story of cost-cutting, outsourcing and why his software developers to ride around in delivery trucks.
 
Optus considers breaking net neutrality in Australia
May charge Netflix, OTT providers for premium service.
 
AGL restructure sees CIO depart
Owen Coppage to leave after ten years.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest articles on BIT Latest Articles from BIT
Small business win in a budget with 'fair' savings: Abbott
Apr 17, 2015
Tony Abbott has reaffirmed that the government’s aim is “always to get taxes ...
Xero now includes an inventory function built-in
Mar 26, 2015
Xero has added inventory and other major new features to the latest release of its cloud ...
Apple reveals its new MacBook
Mar 13, 2015
Replacing the MacBook Air as Apple's thinnest laptop, the new MacBook comes packed with features.
Xero has released a new version of its app for the iPad
Mar 6, 2015
iPad-wielding Xero users can now take advantage of a new version of the iOS app for the cloud ...
Microsoft is offering Azure for Disaster Recovery to Australian SMBs
Feb 10, 2015
If you haven't talked to your IT provider about disaster recovery, it might be worth discussing ...
Latest Comments
Polls
Do you support the Government's data retention scheme?

   |   View results
Yes
  11%
 
No
  89%
TOTAL VOTES: 2377

Vote