ITWire

Home Business IT Security April Patch Tuesday brings more critical Windows updates

April Patch Tuesday brings more critical Windows updates

Get all your tech news delivered to your mail box five days a week
iTWire UPDATE - it's FREE!



The others concern a VBScript remote code execution vulnerability on Windows 2000, XP and Server 2003 (also present but not exploitable on Vista, Windows 7, and Server 2008), and a denial of service issue on Windows 2000, XP, Server 2003, Server 2008.

There are also patches for Exchange Server 2000 and 2003 (with 'defence in depth' patches for Exchange Server 2007 and 2010) that relate to the denial of service issue.

Finally - at least as far as Windows is concerned - an IPv4 address spoofing vulnerability is rated moderate for XP, Vista, Server 2003 and Server 2008.

But there are also two bulletins covering the Microsoft Office family, both rated Important. They cover Publisher (2002, 2003 and 2007) and Visio (2002, 2003, 2007). Both patches protect against remote code execution vulnerabilities that can be exploited by maliciously crafted documents.

"[We] recommend that customers deploy all security updates as soon as possible," said Jerry Bryant, group manager, response communications for the Microsoft Security Response Center.

Microsoft also released an updated version of the Malicious Software Removal Tool (including detection of the Magania password-stealing Trojan) and an update for the Windows Mail junk email filter.

 

RECRUITMENT & RETENTION REPORT 2013

HIRE OR FIRE? BUY OR BUILD

2013 is well underway and Australian companies need to know whether they should invest in IT skills training or pay a premium for the people they need.

If you want to know which choices are being made in your sector, what skills are hard to find, which sectors intend to hire or fire and where the IT spend is going, this free report is must have.

GET YOUR REPORT NOW

Stephen Withers

joomla visitors

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences, a PhD in Industrial and Business Studies, and is a senior member of the Australian Computer Society.

More in this category: « Mac OS X Pwn2Own vulnerability patched PWNed by the Government »
back to top


Services

Company

Community

Connect

http://bs.serving-sys.com/BurstingPipe/adServer.bs?cn=tf&c=19&mc=imp&pli=5460041&PluID=0&ord=[2000]&rtu=-1