eWEEK Europe UK

News of Green, Mobile, IT and Data Centre Technology - at eWEEK Europe UK

NetMediaEurope in association with Ziff Davis Enterprise NetMediaEurope Ziff Davis Enterprise

Patch

Microsoft Issues First Security Patch Of 2010 | eWEEK Europe UK

[...] The first Patch Tuesday release of 2010 will contain a fix rated critical for Windows 2000 users and low for others. According to Microsoft's pre-Patch Tuesday notification, the bulletin addresses a remote code execution vulnerability, and the exploitability index the rating system that predicts the likelihood of a successful exploit is not high.  [...] Microsoft is also not releasing a patch for the IIS (Internet Information Services) problem reported in late December. According to Microsoft, the issue is not an actual vulnerability in IIS 6.0, but an inconsistency in how it handles semicolons that can only be exploited if IIS is configured in a vulnerable setting.  [...] Microsoft is planning to plug a Windows security hole rated critical for Windows 2000 systems, in the company's first Patch Tuesday of the year.  [...]

more...

Microsoft Planning IE Patch Following Google Attack | eWEEK Europe UK

[...] George Stathakopoulos, general manager of Microsoft's Trustworthy Computing Security group, announced that Microsoft would offer a timeline for the patch on 20 Jan. The company's move follows news that France and Germany are encouraging users to shun Internet Explorer for now in favor of other browsers.  [...] In the past few days, France and Germany have advised their citizens to switch from IE to other browsers as they await a patch from Microsoft. Attack code for the vulnerability meanwhile continues to appear on the Internet, though so far it seems to have only been used successfully in targeted attacks focused on IE 6.  [...] Microsoft is planning an out-of-band patch for the Internet Explorer vulnerability attackers exploited to hit Google and other companies.  [...]

more...

Microsoft To Release IE Cyber-Attack Patch | eWEEK Europe UK

[...] According to Microsoft, the patch is slated to be ready around 1 p.m. US EST. If all goes according to plan, the patch will close a hole that has prompted France and Germany to advise users to avoid IE and the U.S. State Department to demand answers from China.  [...] Microsoft has no choice but to release an out-of-band patch for this. with France and Germany having issued notices warning people of the perils of using Microsoft's Internet Explorer, the exploit's role in compromising Microsoft's archrival' Google, among others, and widespread press coverage, Microsoft found itself in a precarious position, said Josh Phillips, virus researcher with Kaspersky Lab.  [...] Microsoft is releasing a patch to plug the Internet Explorer security hole exploited in a spate of cyber-attacks against Google and others.  [...]

more...

Windows 7 and Server Bug Reported After Patch Tuesday | eWEEK Europe UK

[...] Less than 24 hours after Microsoft's Patch Tuesday, a security researcher revealed a zero-day bug affecting Windows 7 and Windows Server 2008 Release 2.  [...] November's Patch Tuesday update addressed 15 security vulnerabilities affecting Windows and Microsoft Office.  [...] While users await a patch, Gaffie advised users close the SMB feature and ports.  [...]

more...

Three Critical Fixes For Microsoft Patch Tuesday | eWEEK Europe UK

[...] especially important on Vista and Server 2008& Customers are advised to take inventory of where Windows versions are within their environments so they can plan testing and roll out the patch for bulletin three as quickly as possible.  [...] Microsoft's Patch Tuesday for November includes six security bulletins, and will fix three vulnerabilities that Redmond is labelling as critical.  [...] Microsoft's monthly Patch Tuesday will include six security bulletins, three of which are rated 'critical'.  [...]

more...

Microsoft Patch Tuesday Targets More Critical Windows Flaws | eWEEK Europe UK

[...] A patch has not yet been made available for the Internet Information Services vulnerability made public last week, Greenbaum noted. Until a patch for this is issued, as a temporary workaround we suggest IT administrators using IIS 5.0 and 6.0 turn off anonymous write access immediately.  [...] All five of the security bulletins in Microsoft Windows in September's Patch Tuesday release are rated critical, including one that addresses a JavaScript engine vulnerability.  [...] Microsoft Patch Tuesday Targets More Critical Windows Flaws.  [...]

more...

Microsoft: Patch Server Vulnerability to Combat New Attacks | eWEEK Europe UK

[...] Microsoft has reiterated its recommendation that companies deploy the patch to correct a flaw affecting the Windows Server service that was fixed last October.  [...] Microsoft has repeated its warning to users to apply a vulnerability patch in their Windows Server service. A new variant of the Conficker worm that targets this flaw is to blame.  [...] The issue was the subject of a rare out-of-band security patch by Microsoft last October 23rd. As attacks mounted, Microsoft issued a follow-up warning in its Security Response Center blog a month later.  [...]

more...

Microsoft Patch Tuesday To Offer Office Fixes | eWEEK Europe UK

[...] Microsoft is planning two security updates for Patch Tuesday to address eight vulnerabilities, and reminded users it is terminating support for some versions of Windows in the coming months.  [...] Microsoft Patch Tuesday To Offer Office Fixes. eWEEK Europe UK.  [...] You are here. Home News Microsoft Patch Tuesday To Offer Office Fixes.  [...]

more...

Microsoft Tries To Patch Hacker Holes | eWEEK Europe UK

[...] Microsoft has bundled five critical bulletins into a mammoth April Patch Tuesday release.  [...] You are here. Home News Security Microsoft Tries To Patch Hacker Holes.  [...] Also included in the round of patches is a critical cumulative update for Internet Explorer that swats six bugs in IE 7 and earlier versions of the browser. There is also a serious vulnerability in Microsoft DirectShow that could permit a hacker to remotely execute code if a user opens a malicious M-JPEG file.  [...]

more...

» Print Microsoft Blames Malware For XP’s ‘Blue Screen Of Death’ | eWEEK Europe UK

[...] The update patched two vulnerabilities affecting the Windows Kernel, and was one of 13 security bulletins issued 9 February as part of [4] Patch Tuesday. As reports of the problem came in, speculation began to centre on malware being the root cause.  [...] According to Microsoft, Windows systems infected with Alureon were hit with blue screen of death' errors that prevented computers from booting after the user downloaded Microsoft patch [2] MS10-015.  [...] Following an investigation, Microsoft has confirmed that the blue screen of death' that last week [1] hit some systems running Windows XP following the Patch Tuesday security update, was caused by a rootkit.  [...]

more...