Jump to content

Microsoft Prepping 17 Patches For 64 Holes


ritchie58

Recommended Posts

Microsoft will release 17 bulletins next week to fix 64 vulnerabilities across a swath of products including Windows, Office and Internet Explorer, the company said in its Patch Tuesday preview.

 

Of the bulletins, nine are rated "critical" and eight are "important," the company said in a TechNet blog post.

 

In addition to all versions of Windows, IE 6, 7 and 8; numerous versions of Office for Windows and the Mac, affected software includes Visual Studio .NET and Visual C++, according to the advisory.

 

"This month we'll be closing some issues that Microsoft has already previously spoken to, including the SMB Browser (Critical) issue publicly disclosed Feb. 15. Microsoft assessed the situation and reported that although the vulnerability could theoretically allow Remote Code Execution, that was extremely unlikely. To this day, we have seen no evidence of attacks," the company said in its blog post.

 

"We are also planning a fix for the MHTML vulnerability in Windows, rated Important," the post said. "We alerted people to this issue with Security Advisory 2501696 (including a Fix-It that fully protected customers once downloaded) back in late January. In March, we updated the advisory to let people know we were aware of limited, targeted attacks."

 

The release represents a large number of bulletins and vulnerabilities addressed at one time for Microsoft. The company issued 17 bulletins last December and plugged a record 49 holes last October.

 

"Microsoft is planning to release 17 bulletins and a whopping 64 CVEs (Common Vulnerabilities and Exposures) this month, a new CVE record," said Andrew Storms, director of security for nCircle. " That seems like a huge number of bugs but it's actually about what we expected. Ever since the middle of last year Microsoft's bulletin releases generally hit double digits every other month.

 

 

Link to comment
Share on other sites

Microsoft will release 17 bulletins next week to fix 64 vulnerabilities across a swath of products including Windows, Office and Internet Explorer, the company said in its Patch Tuesday preview.

 

Of the bulletins, nine are rated "critical" and eight are "important," the company said in a TechNet blog post.

 

In addition to all versions of Windows, IE 6, 7 and 8; numerous versions of Office for Windows and the Mac, affected software includes Visual Studio .NET and Visual C++, according to the advisory.

 

"This month we'll be closing some issues that Microsoft has already previously spoken to, including the SMB Browser (Critical) issue publicly disclosed Feb. 15. Microsoft assessed the situation and reported that although the vulnerability could theoretically allow Remote Code Execution, that was extremely unlikely. To this day, we have seen no evidence of attacks," the company said in its blog post.

 

"We are also planning a fix for the MHTML vulnerability in Windows, rated Important," the post said. "We alerted people to this issue with Security Advisory 2501696 (including a Fix-It that fully protected customers once downloaded) back in late January. In March, we updated the advisory to let people know we were aware of limited, targeted attacks."

 

The release represents a large number of bulletins and vulnerabilities addressed at one time for Microsoft. The company issued 17 bulletins last December and plugged a record 49 holes last October.

 

"Microsoft is planning to release 17 bulletins and a whopping 64 CVEs (Common Vulnerabilities and Exposures) this month, a new CVE record," said Andrew Storms, director of security for nCircle. " That seems like a huge number of bugs but it's actually about what we expected. Ever since the middle of last year Microsoft's bulletin releases generally hit double digits every other month.

Hi,

Prior to downloadin/installing patches from MS, it is advisable to have the computer in order. Antivirus- & Malwareproducts known for blocking/quarantining due to "false postives" should have such features inactivated to avoid corrupt updating!

Cheers,

sweidre

Link to comment
Share on other sites

Hi,

Prior to downloadin/installing patches from MS, it is advisable to have the computer in order. Antivirus- & Malwareproducts known for blocking/quarantining due to "false postives" should have such features inactivated to avoid corrupt updating!

Cheers,

sweidre

Hi,

Last Tuesday night I downloaded & installed 19+1 new Microsoft patches successfully (downloding took 30 minutes, but installation only 10 minutes) for my Win 7 Pro 64-bit SP1 OS (Swedish version). I hope, that also other users will get no problems when installing!

Cheers,

sweidre

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...