Article

Microsoft plans two Windows security updates

SearchSecurity.com Staff
  • E-Mail
  • Print
  • A
  • AA
  • AAA
  • LinkedIn
  • Facebook
  • Twitter
  • Share This
  • Reprints

Microsoft is starting the year off with a lighter-than-usual patch release, with two security updates scheduled for release on Tuesday.

The software giant said in its Patch Tuesday advance bulletin that it will

    Requires Free Membership to View

    Login

    • By submitting you agree to receive email communications from
      TechTarget and its partners. Privacy Policy Terms of Use.

    • spacer
spacer

release one critical bulletin and one important bulletin, both for flaws in Windows.

spacer
Microsoft security bulletin:
December:

Microsoft fixes critical DirectX, Windows and IE flaws: Microsoft's December 2007 security update includes seven patch bulletins -- three of them critical -- for flaws in various versions of Windows, IE and DirectX.

Inside MSRC: Message Block and queuing patches explored: Microsoft's Bill Sisk explains patches that address vulnerabilities in Server Message Block Version 2 and Microsoft Message Queuing (MSMQ).

Microsoft warns of Windows zero-day: Attackers could exploit a zero-day flaw in Windows' Web Proxy Auto-Discovery (WPAD) feature to access sensitive data, Microsoft warned.
spacer
spacer

According to the advance bulletin, the critical update will affect a variety of Windows versions, including Windows XP SP2, Vista, Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2.

The important update will affect Windows 2000 Service Pack 4, Windows XP SP2, Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2.

Microsoft typically assigns the critical rating to flaws whose exploitation could allow for the propagation of a malware attack without user action. The important rating usually goes to flaws whose exploitation could result in compromise of the confidentiality, integrity, or availability of users data or of the integrity or availability of processing resources.

As is the case each month, an update of Microsoft's Windows Malicious Software Removal Tool will accompany the release of the security patches. The update will be delivered via Windows Update (WU), Microsoft Update (MU), Windows Server Update Services (WSUS), and the Download Center.

Microsoft will also release five non-security, high-priority updates via MU and WSUS; and two non-security, high-priority updates for Windows on WU and WSUS.

Related Topics: Windows Security: Alerts, Updates and Best Practices, VIEW ALL TOPICS

More News and Tutorials

  • Articles

    • Microsoft to release urgent security patch
    • Microsoft to fix 23 vulnerabilities in May 2012 Patch Tuesday
    • Microsoft to fix 23 vulnerabilities in May 2012 Patch Tuesday
    • Microsoft plans light patch Tuesday; to fix 22 bugs
    • Microsoft to release four critical security updates

    • Microsoft to patch serious IE, Exchange Server flaws
    • Microsoft to issue critical Windows patch
    • Microsoft’s August 2011 Patch Tuesday to address 22 flaws
    • Microsoft releases October patch Tuesday advanced notifications
    • Microsoft to address flaws in Windows, Office for Mac

  • Related glossary terms

    Terms for Whatis.com - the technology online dictionary

    • principle of least privilege (POLP)
    • security identifier (SID)
    • BotHunter
    • trusted computing

Join the conversationComment

Share
Comments

    Results

    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.
    Back to top
    Related searches:
    security microsoft update tuesday server
    gipoco.com is neither affiliated with the authors of this page nor responsible for its contents. This is a safe-cache copy of the original web site.