Microsoft: Seven Security Fixes For JuneMicrosoft: Seven Security Fixes For June
The software maker says seven security updates are on the way next week. One has been ranked "moderate," three as "important," and the remaining three reached "critical," its most severe rating.
June 5, 2008
The software maker says seven security updates are on the way next week. One has been ranked "moderate," three as "important," and the remaining three reached "critical," its most severe rating.The planned patches include those for Bluetooth, its Internet Explorer Web browser, DirectX, and Active Directory.
Microsoft's Security Bulletin Advance Notification, which is published the Thursday prior to Patch Tuesday, doesn't provide many details into the flaws, other than their severity rating and affected software. Rather, the notification is meant to give network operations teams a heads-up to prepare for the monthly patch cycle.
The three critical flaws are in Bluetooth, IE, and DirectX. Remote code execution is possible with all three vulnerabilities, which means they're exploitable across the Internet, and potentially "wormable."
While it appears that all three critical flaws will be of concern to consumers and businesses alike, two of the three important bulletins affect server software, Active Directory, the Windows Internet Name Service.
The final, and moderate, vulnerability, has only been identified as a "Kill Bit Bulletin," which indicates that is probably a workaround aimed at an at-risk third-party application.
About the Author(s)
You May Also Like
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication MethodsOct 26, 2023
Modern Supply Chain Security: Integrated, Interconnected, and Context-DrivenNov 06, 2023
How to Combat the Latest Cloud Security ThreatsNov 06, 2023
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023
Passwords Are Passe: Next Gen Authentication Addresses Today's Threats
What Ransomware Groups Look for in Enterprise Victims
Concerns Mount Over Ransomware, Zero-Day Bugs, and AI-Enabled Malware
Everything You Need to Know About DNS Attacks
Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks