Bumper Patch Tuesday tackles multiple Windows flaws2010-02-10 09:54 by DanielaTags: Microsoft, security, Windows
Microsoft has released 13 bulletins, covering 26 vulnerabilities, as part of a bumper Patch Tuesday. All supported versions of Windows will need patching, though Vista and Win 7 (three critical updates) are less exposed than XP and Windows 2000 shops (five critical fixes). Three of the bulletins are particularly severe and require immediate attention. One of these critical updates (MS10-006) addresses two vulnerabilities in the SMB networking service protocol that might easily lend itself to drive-by attacks on unpatched systems. A separate vulnerability (MS10-007) in Windows Shell handler poses a similar code injection risk, but this problem is restricted to older versions of Windows (XP, Win 2K, Win 2003 Servers). Lastly there's a fix (MS10-013) for Microsoft DirectShow which, left unpatched, creates a handy mechanism for hackers to take over machines, providing they succeed in tricking marks into opening maliciously constructed AVI video files. Read more -here-
Post your review/comments
rate:
avg:
|