Friday, October 10, 2008
Microsoft has identified four critical security vulnerabilities in its monthly round of software updates.
While details of the flaws have not yet been made available, they are known to affect Windows Active Directory, Internet Explorer, Excel and the Microsoft Host Integration Server, indicating that if left unresolved, they could pose a threat to enterprise network security.
Meanwhile, an additional seven flaws have also been identified which have been given lower severity ratings, with six labeled important and one moderate.
Network World notes that the updates next week will coincide with the launch of two new Microsoft tools designed to stabilize systems and enhance network security.
The Microsoft Active Protections Program offers security vendors advance notice of all security threats identified in order to let them issue a patch, while the Exploitability Index is designed to allow end-users and administrators to make more informed decisions about which patches to install.
Details of the exploits will be made available alongside the patches, which will be released next Tuesday.
Related News:
Scammers skulking on social networking sites - 11.11.2008
Criminals are increasingly turning to social networking sites to commit identity theft and fraud, it has been claimed.
Voting 'needs a paper trail' - 11.4.2008
As Americans head to the polls today, one research team has warned that different types of electronic voting machines used throughout the country all have their own vulnerabilities.
Microsoft in legal battle over piracy 'nagware' - 10.30.2008
A Chinese citizen has filed a civil lawsuit against Microsoft after the Windows Genuine Advantage software was installed on his computer as part of an automatic update.
Analyst finds SQL flaw in Google Adwords - 10.30.2008
There could be a resurgence in the number of attacks launched through Google services, one analyst has claimed.
Microsoft patches ahead of Windows 7 pre-beta launch - 10.28.2008
Microsoft yesterday (October 27th) issued a patch for a network security vulnerability identified in the pre-beta version of the Windows 7 operating system.


