Microsoft has announced 14 Security Bulletins for its monthly update Tuesday (Patch Day) on September 10th. Four of the bulletins should deal with critical security vulnerabilities in Windows, Internet Explorer, Outlook, and Sharepoint. A further ten bulletins have assigned Microsoft the second highest risk level “high”. They are meant to address gaps in Windows and Office.
The Patch-Reigen opens as usual Internet Explorer. All versions for all supported Windows systems from XP to RT will receive a new cumulative security update to resolve critical vulnerabilities. An attacker could inject and execute arbitrary code. This also applies to Outlook 2007 and 2010 as well as to most Sharepoint versions since 2003. A critical vulnerability is also found in Windows XP, whose support ends in April 2017, and in Server 2003.
Four other security bulletins are also to deal with vulnerabilities, which can enable remote code access. However, Microsoft does not classify these as critical, because these gaps can not be exploited without the participation of a user. That would open a specially prepared file. This can be an Office document, for example, because three of the bulletins are Word, Excel, and Access in various Office versions.
Also, its monthly worming called "Windows Malicious Software Removal Tool" will distribute Microsoft as usual in an updated version. Security Bulletins will be released on September 10, around 7:00 pm CEST. A little later in the evening, Adobe will provide security updates for its PDF programs Reader and Acrobat.
No comments:
Post a Comment