Microsoft Readies 12 Patches, Reveals New Security Plans

<a href="http://www.informationweek.com/news/windows/operatingsystems/showArticle.jhtml?articleID=210000459">InformationWeek</a>, <a href="http://www.networkworld.com/news/2008/080808-msoft-vulnerabilities.html">Network World</a>

Jim Manico, OWASP Global Board Member

August 8, 2008

1 Min Read

Microsoft is getting ready to release a dozen security patches when Patch Tuesday rolls around next week.Of the 12 fixes, seven have been deemed "critical" and affect Windows, Internet Explorer, Media Player, Access, Excel, PowerPoint, and Office. If not patched, they could be exploited remotely by hackers seeking to hijack users' PCs. The remaining five patches are rated "important" and affect Windows, Outlook Express, Messenger, and Office.

Earlier this week at the Black Hat conference, Microsoft unveiled a handful of new security initiatives, including the Microsoft Vulnerability Research program, which formalizes how the vendor reveals vulnerabilities its researchers find in third-party software; the Exploitability Index, which assesses the likelihood of exploit code becoming available following the issuance of Security Bulletins; and the Microsoft Active Protections Program (MAPP), which gives certain third-party vendors access to vulnerability information before it's released to the public.InformationWeek, Network World

About the Author(s)

Jim Manico

Jim Manico

OWASP Global Board Member

Jim Manico is a Global Board Member for the OWASP foundation where he helps drive the strategic vision for the organization. OWASP's mission is to make software security visible, so that individuals and organizations worldwide can make informed decisions about true software security risks. OWASP's AppSecUSA<https://2015.appsecusa.org/c/> conferences represent the nonprofit's largest outreach efforts to advance its mission of spreading security knowledge, for more information and to register, see here<https://2015.appsecusa.org/c/?page_id=534>. Jim is also the founder of Manicode Security where he trains software developers on secure coding and security engineering. He has a 18 year history building software as a developer and architect. Jim is a frequent speaker on secure software practices and is a member of the JavaOne rockstar speaker community. He is the author of Iron-Clad Java: Building Secure Web Applications<http://www.amazon.com/Iron-Clad-Java-Building-Secure-Applications/dp/0071835881> from McGraw-Hill and founder of Brakeman Pro. Investor/Advisor for Signal Sciences.

See more from Jim Manico
Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Subscribe

You May Also Like

More Insights
Webinars
More Webinars
Events
More Events

Editor's Choice

Man in a suit drawing development graph strategy on gray wall
Cybersecurity Operations
CISO Corner: Evil SBOMs; Zero-Trust Pioneer Slams Cloud Security; MITRE's Ivanti IssueCISO Corner: Evil SBOMs; ZT Pioneer Slams Cloud Security; MITRE's Ivanti Issue
byTara Seals, Managing Editor, News, Dark Reading
Apr 26, 2024
9 Min Read
The Manila skyline
Cyberattacks & Data Breaches
Philippines Pummeled by Assortment of Cyberattacks & Misinformation Tied to ChinaPhilippines Pummeled by Mix of Cyberattacks & Misinfo Tied to China
byJohn Leyden, Contributing Writer
Apr 26, 2024
5 Min Read
Vector drawing of CPU with lock symbol on stylized circuit board
Endpoint Security
Chip Giants Finalize Specs Baking Security Into SiliconChip Giants Finalize Specs Baking Security Into Silicon
byAgam Shah, Contributing Writer
Apr 25, 2024
2 Min Read
Reports
More Reports
White Papers
More Whitepapers
Events
More Events