Home Business IT Security Microsoft's February security updates include a 'non-security update'

Subscribe now and get the news that matters to your industry.

* Your Email Address:
* First Name:
* Last Name:
Industry:
Job Function:
Australian State:
Country:
Email marketing by Interspire
weebly statistics

Microsoft this week issued a dozen security bulletins addressing 22 vulnerabilities in Windows, Internet Explorer, Internet Information Service and Internet Explorer. The company also released a so-called non-security update that has everything to do with security.


Of the 12 security bulletins issued in February, three are rated critical. They affect Windows (a Windows Shell vulnerability affecting most versions excluding Windows 7 and Server 2008 R2, and a vulnerability in the OpenType Compact Font Format driver affecting all currently supported versions) and Internet Explorer (all currently supported versions).

According to Angela Gunn, security response communications manager at Microsoft, the company's ability to monitor the threat landscape allowed it to determine that attempts to attack the Internet Explorer vulnerability were very low, so there was no need for an out-of-cycle patch.

The other Windows issues are rated important or moderate.

The Office bulletin concerns Visio 2002, 2003 and 2007. It addresses a vulnerability that allows a maliciously crafted file to trigger remote code execution.

Microsoft also released a number of non-security updates, but one of them is all about security. Adam Shostack, program manager in Microsoft's Trustworthy Computing Security operation explained that "we reserve the term 'Security Update' to mean 'a broadly released fix for a product-specific security-related vulnerability.'"

So the update that changes the operation of Windows' Autorun feature is instead described as an "Important, non-security update."

CONTINUED

PROTECT YOURSELF AGAINST BANDWIDTH BANDITS!

Don't let traffic bottlenecks slow your network or business-critical apps to a grinding halt. With SolarWinds Bandwidth Analyzer Pack (BAP) you can gain unified network availability, performance, bandwidth, and traffic monitoring together in a single pane of glass.

With SolarWinds BAP, you'll be able to:

• Detect, diagnose, and resolve network performance issues

• Track response time, availability, and uptime of routers, switches, and other SNMP-enabled devices

• Monitor and analyze network bandwidth performance and traffic patterns.

• Identify bandwidth hogs and see which applications are using the most bandwidth

• Graphically display performance metrics in real time via dynamic interactive maps

Download FREE 30 Day Trial!

CLICK TO DOWNLOAD!

ITWIRE SERIES - IS YOUR BACKUP STRATEGY COSTING YOU CLIENTS?

Where are your clients backing up to right now?

Is your DR strategy as advanced as the rest of your service portfolio?

What areas of your business could be improved if you outsourced your backups to a trusted source?

Read the industry whitepaper and discover where to turn to for managed backup

FIND OUT MORE!

Stephen Withers

joomla visitors

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences, a PhD in Industrial and Business Studies, and is a senior member of the Australian Computer Society.

Connect