Microsoft issues latest round of security patches

By Shaun Nichols on Jun 10, 2009 2:23PM
Microsoft issues latest round of security patches

Of the ten bulletins issued, six were rated as 'critical,' while three were given lower classifications of 'important' and a fourth was rated as 'moderate.'

Among the critical fixes were patches for Word, Excel and the Windows Active Directory component. Each of the critical fixes addressed flaws which could allow an attacker to remotely execute code on a targeted system.

Perhaps the most interesting of the patches, however, addresses several new and previously reported issues in Internet Explorer, including one high-profile flaw.

Juniper Networks senior manager of security research Steve Manzuik told vnunet.com that while security researchers would be taking special note of a fix for the so-called "Nills" security vulnerability first detected at the CanSecWest conference in March, all users should be looking to install the patch.

"This was more significant from a research point of view," Manzuik said of the update.

"But as usual, when it comes to Internet Explorer, these are patches that everyone wants to install."

Amongst the non-critical updates were fixes for privilege elevation holes in the Windows Kernel, Remote Procedure Call component and Internet Information Services software.

The lone 'moderate' patch addresses a flaw in the Windows Search component which could allow for information disclosure.

The June update addresses a much larger range of applications than the May patch release, which focused on security fixes for Microsoft Office.

Experts worry that the sheer volume and range of the patches could give headaches to IT staff that prefer to examine and test fixes prior to installation.

"Microsoft's fixes cover many of its technologies, across various versions of Windows and Office for Mac as well," said Dave Marcus, director of security research and communications for McAfee Avert Labs.

"Patching will be especially challenging for enterprises, which will need a solid risk management strategy to test and prioritize the fixes to fend off potential attacks."

Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
bulletins fixes internet patches security windows

Partner Content

How Expert Support Can Help Partners and SMBs Realize the Full Value of AI
How Expert Support Can Help Partners and SMBs Realize the Full Value of AI
Beyond the box: How Crayon Is Redefining Distribution for the Next Era
Beyond the box: How Crayon Is Redefining Distribution for the Next Era
Guiding customers on the uneven path to AI adoption
Guiding customers on the uneven path to AI adoption
How mandatory climate reporting is raising the bar for corporate leadership
How mandatory climate reporting is raising the bar for corporate leadership
New Microsoft CSP rules? Here’s how MSPs can stay ahead with Ingram Micro
New Microsoft CSP rules? Here’s how MSPs can stay ahead with Ingram Micro

Sponsored Whitepapers

Cut through the SASE confusion
Cut through the SASE confusion
Stay protected as cyber threats evolve
Stay protected as cyber threats evolve
Defend Your Network from the Next Generation of AI Threats
Defend Your Network from the Next Generation of AI Threats
The race to AI advantage is on. Don’t let slow consulting projects hold you back.
The race to AI advantage is on. Don’t let slow consulting projects hold you back.
The changing face of Australian distribution
The changing face of Australian distribution

Most read articles

Save-the-dates for Pipeline 2026: We're levelling up to Hamilton Island in May!

Save-the-dates for Pipeline 2026: We're levelling up to Hamilton Island in May!
The State of Channel Security

The State of Channel Security
Channel faces AI-fuelled risk as partners lag on data resilience, Dicker Data summit told

Channel faces AI-fuelled risk as partners lag on data resilience, Dicker Data summit told
Fast50 rankings revealed at gala awards in Sydney

Fast50 rankings revealed at gala awards in Sydney

Log in

Email:
Password:
  |  Forgot your password?