Microsoft warns of flaw in latest Windows patch

By

Microsoft has issued a warning that flaws in its latest Windows patch designed to protect against newly discovered critical Windows vulnerabilities have been causing “various problems” for an as yet unknown number of users.

The Microsoft security advisory MS05-051 details how the critical MSDTC (CAN-2005-2119) and COM+ (CAN-2005-1978) vulnerabilities can potentially be exploited by malicious cyber criminals to cause remote code execution and local elevation of privileges.


But companies installing the patch against these flaws have reported a range of issues including users being locked out of systems, antivirus security updates failing to complete and PCs just displaying a blank screen without any desktop icons after the update has been rolled out.

"Microsoft is aware of reports of isolated issues after deployment with Microsoft Security Bulletin MS05-051. We are working with a limited number of affected customers to help resolve these issues," the Redmond firm said.
The issue affects systems that do not have the default Access Control List (ACL) settings in the %Windir%\Registration folder. These systems "may experience various problems after installing MS05-051. The update helps protect against attacks seeking to exploit MS05-051, however this isolated set of issues might impact systems after installation of the update", according to Microsoft.
Based on feedback from customers, Microsoft said it has published Microsoft Knowledge Base Article 909444, which tackles the problem.
"We continue to urge customers to deploy MS05-051 and all recent security updates. For additional information about security updates, please visit the following website," the company advised.
Customers who experience installation problems should contact Microsoft Product Support Services. Product Support Services in North America can be contacted for help with security update problems or viruses at no charge by using the PC Safety line (1-866-PCSAFETY).
.
http://support.microsoft.com/
http://www.microsoft.com/technet/security/advisory/909444.mspx
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2119
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1978
http://www.microsoft.com/technet/security/bulletin/MS05-051.mspx
http://support.microsoft.com/kb/909444

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
flawinlatestmicrosoftofpatchsecuritywarnswindows

Sponsored Whitepapers

Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Futureproof Your Business with Datacom and AMD: Seamless Windows 11 Transition
Futureproof Your Business with Datacom and AMD: Seamless Windows 11 Transition
See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra

Events

Most Read Articles

NSW Police to embark on $126m IT overhaul

NSW Police to embark on $126m IT overhaul
CBA looks to GenAI to assist 1200 'security champions'

CBA looks to GenAI to assist 1200 'security champions'
Australia's super funds told to assess authentication controls

Australia's super funds told to assess authentication controls
WestJet probes cyber security incident

WestJet probes cyber security incident
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?