BNET UK
silicon.com
ZDNet UK

Home
News
Blogs
Reviews
Videos
Jobs
Resources
Community

Leader
Comment
White Papers
Downloads
Special Reports

Hardware
Software
Communications
Internet
Security
IT Management
Emerging Tech
Leader

Group Blogs
News Blog
Post Room
Rupert's Diary

Hardware Reviews
Software Reviews
Editors' Choice
Buyer's Guides
Tech Guides
Competitions

Dialogue Box
Security threats
Server platforms
Mobile devices
Application development
Full video index

Articles
White Papers
Downloads
Companies
Broadband Speed Test

People
Competitions
Post Room
FAQ

You are here: ZDNet UK > News > Software

Desktop platforms Toolkit

October Microsoft patch details revealed

Tags:
Exchange,
Patch,
Windows,
Lack Thereof

Joris Evers CNET News

Published: 07 Oct 2005 09:10 BST

As part of its monthly patching cycle, Microsoft on Tuesday plans to release eight security alerts for flaws in the Windows operating system.

At least one of the alerts is deemed "critical", Microsoft's highest risk rating, the company said in a notice posted on its Web site on Thursday. Last month, Microsoft planned one critical alert for Windows, but pulled it at the eleventh hour because of quality issues.

Microsoft rates as critical any security threat that could allow a malicious Internet worm to spread without any action required on the part of the user.

Additionally, Microsoft on Tuesday plans to release a security bulletin covering a problem related to Windows and its Exchange email server, the company said. This issue is rated "important", one notch below "critical" on Microsoft's rating scale.

Microsoft's notice Thursday did not specify whether any of the patches will be for Internet Explorer, the Web browser component of Windows. Several security researchers have come forward with flaws in IE over the past weeks. Some of these vulnerabilities could let an attacker commandeer a user's PC.

There are several vulnerabilities in IE 6 waiting to be fixed, according to Secunia. The security monitoring company has issued 86 alerts on the Web browser since 2003; 20 of those security bugs remain unpatched.

As part of its monthly patches, Microsoft also plans to release an updated version of the Windows Malicious Software Removal Tool. The software detects and removes common malicious code placed on computers.

Microsoft gave no further information on Thursday's bulletins, other than stating that some of the Windows fixes may require restarting the computer. The Exchange-related patch will require a restart, Microsoft said.

The software maker offers advance notification about patches so people can get ready to install the updates. Microsoft did not release any fixes in September, but in August the company released six security bulletins, including three deemed critical for Windows. One of the flaws was exploited days later by the Zotob worm, which wreaked havoc on Windows 2000 systems worldwide.

Microsoft said it will host a Webcast about the new fixes on Wednesday at 1100 PDT.

Did you find this article useful?
55 out of 146 people found this useful

Share this article:
Digg
Slashdot
Del.ici.ous
Stumble
Reddit

Company/Topic Alerts

Create a new alert from the list below:

Microsoft
security, lack thereof
Patch

Secunia
Windows
Exchange

Video

Install Flash Player plugin

Find out more: From The Labs: A look at...

All videos
Most popular videos
Latest videos

Microsoft Windows 7 Special Report Special Report

How Microsoft can make Windows 7 a success

Comment Many businesses have given Vista a wide berth; Microsoft must focus on five areas to make sure Windows 7 doesn't suffer the same fate, argues TechRepublic's Jason Hiner