Microsoft issues four patches for September

By

Microsoft has issued a total of four security bulletins this week, in its monthly patch release.

Microsoft issues four patches for September
The September edition of the update addresses a total of eight security flaws, with each bulletin carrying a maximum severity rating of 'critical'.

Three of the four bulletins address remote code execution errors in various components of Microsoft Windows, while the fourth fixes a flaw in Office.

The first of the four Windows fixes is for five separate issues in the GDI+ component. An attacker could use a number of specially crafted image files to create errors which could then allow for remote code execution. The patch is rated as critical for all currently supported versions of Windows XP, Server and Vista.

The second Windows fix addresses flaws in the Windows Media Encoder software and can be exploited through a specially-crafted web page. That bulletin is listed as critical for Windows Vista and XP, and moderate for Windows server 2003 and 2008.

The third of the patches fixes a flaw in Windows Media Player 11 which could allow for a remote code execution attack by way of a malformed streaming audio file.

The last patch addresses an issue in Office which allows for remote code attacks by way of a specially crafted OneNote URL. The vulnerability is only listed as critical for OneNote 2007 users. All other versions of Office are listed as important under the bulletin.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
forfourissuesmicrosoftpatchesseptembersoftware

Sponsored Whitepapers

Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Futureproof Your Business with Datacom and AMD: Seamless Windows 11 Transition
Futureproof Your Business with Datacom and AMD: Seamless Windows 11 Transition
See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra

Events

Most Read Articles

ANZ consolidates operational risk into ServiceNow

ANZ consolidates operational risk into ServiceNow
Rio Tinto AI tool aids defect elimination in rail operations

Rio Tinto AI tool aids defect elimination in rail operations
Curtin University makes headway on 'radical' tech shakeup

Curtin University makes headway on 'radical' tech shakeup
Salesforce blocks AI rivals from using Slack data

Salesforce blocks AI rivals from using Slack data
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?