Anything Forums

Microsoft heads for another big Patch Tuesday

Another dozen patches coming up for Windows and Office


August 03, 2006 (IDG News Service) -- August will be another substantial patch month for Microsoft Corp., with the vendor releasing twelve security bulletins next Tuesday to fix holes in both its Windows OS and the Office productivity suite.

Ten of the patches will affect Windows, with at least one rated as a "critical" update. The other two security updates, at least one of which also is rated "critical," affect Office. Critical flaws are those than can be exploited by attackers to run unauthorized code on a PC without any user action.

The patches, some of which will require a restart, will be released on Aug. 8 as part of Microsoft's regularly scheduled monthly security update, which security researchers call "Patch Tuesday."

Also on Tuesday, Microsoft will release an updated version of its Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services and the Download Center. The company also will release two nonsecurity high-priority updates on Windows Update and Software Update Services.

Archived topic from Iceteks, old topic ID:4482, old post ID:35908

I should really setup my SUS server.... been holding it off for ever.

Archived topic from Iceteks, old topic ID:4482, old post ID:35909

9 Critical Patches Among Microsoft's Dirty Dozen

Microsoft today issued a dozen patches -- nine critical -- for a
variety of vulnerabilities that affect products ranging from
Windows XP to Windows Server 2003. All but one of the flaws can be
used to remotely execute code; the remaining vulnerability can be
used to elevate privilege.

Read more:
http://entmag.com/news/article.asp?EditorialsID=7685

Archived topic from Iceteks, old topic ID:4482, old post ID:35922

On Tuesday Microsoft released twelve new security bulletins, nine of which are rated critical on the company's security rating scale. Shavlik recommends installing each of these patches as soon as you can, however, we'd like to call out specific attention to MS06-040. Microsoft and Shavlik strongly encourage you to install MS06-040 as soon as possible as this issue is being actively exploited on the Internet. If you have any questions regarding these bulletins or how to deploy the corresponding patches using Shavlik HFNetChkPro or Shavlik NetChk Protect, please visit the Shavlik forums (http://forum.shavlik.com/viewforum.php?f=35) or contact Shavlik Support at support@shavlik.com.


Following is a listing of the security bulletins:

MS06-040
Vulnerability in Server Service Could Allow Remote Code Execution (921883)
Severity: Critical
http://www.microsoft.com/technet/security/...n/MS06-040.mspx

MS06-041
Vulnerability in DNS Resolution Could Allow Remote Code Execution (920683)
Severity: Critical
http://www.microsoft.com/technet/security/...n/MS06-041.mspx

MS06-042
Cumulative Security Update for Internet Explorer (918899)
Severity: Critical
http://www.microsoft.com/technet/security/...n/MS06-042.mspx

MS06-043
Vulnerability in Microsoft Windows Could Allow Remote Code Execution (920214)
Severity: Critical
http://www.microsoft.com/technet/security/...n/MS06-043.mspx

MS06-044
Vulnerability in Microsoft Management Console Could Allow Remote Code Execution (917008)
Severity: Critical
http://www.microsoft.com/technet/security/...n/MS06-044.mspx

MS06-045
Vulnerability in Windows Explorer Could Allow Remote Code Execution (921398)
Severity: Important
http://www.microsoft.com/technet/security/...n/MS06-045.mspx

MS06-046
Vulnerability in HTML Help Could Allow Remote Code Execution (922616)
Severity: Critical
http://www.microsoft.com/technet/security/...n/MS06-046.mspx

MS06-047
Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution (921645)
Severity: Critical
http://www.microsoft.com/technet/security/...n/MS06-047.mspx

MS06-048
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (922968)
Severity: Critical
http://www.microsoft.com/technet/security/...n/MS06-048.mspx

MS06-049
Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)
Severity: Important
http://www.microsoft.com/technet/security/...n/MS06-049.mspx

MS06-050
Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution (920670)
Severity: Important
http://www.microsoft.com/technet/security/...n/MS06-050.mspx

MS06-051
Vulnerability in Windows Kernel Could Result in Remote Code Execution (917422)
Severity: Critical
http://www.microsoft.com/technet/security/...n/MS06-051.mspx


MSRT-001: Malicious Software Removal Tool (August Update)
http://www.microsoft.com/security/malwareremove/default.mspx

Additional information about these new security bulletins can be found on Microsoft's TechNet Web site at: http://www.microsoft.com/technet/security/...n/ms06-aug.mspx


Archived topic from Iceteks, old topic ID:4482, old post ID:35937

More remote code execution security fixes to fix the fixes that did not fix the last fixes.

Archived topic from Iceteks, old topic ID:4482, old post ID:35942

Whats SOOO nuts is thay I went to the 'uopgrade site' & ran it and it told me 'no critical updates needed'------------HELLO??

This was AFTER I posted the list above.

So, I had to manually download & install each one from the list.

Archived topic from Iceteks, old topic ID:4482, old post ID:35943

The U.S. Department of Homeland Security has urged Windows users to plug a potential worm hole in the Microsoft operating system (MS06-040). While this vulnerability can impact all of the Microsoft operating systems, fixing this problem on Microsoft Windows NT® is particularly challenging.

I HATE ISLAMIC-FASCIST COMPUTER WORMS!



Archived topic from Iceteks, old topic ID:4482, old post ID:35949