0
   

ALERT: Massive Security Update from MS for MS software

 
 
Reply Sat 16 Aug, 2008 09:26 am
If you don't use Auto Update and haven't checked for updates in the last 24 hours, you might want to do so.

This patch fixes 26 holes in security related to Microsoft Office and component programs, such as Excel, PowerPoint and Word. Redmond also released patches for vulnerabilities in Windows Messenger, Outlook Express and Windows Mail.

Read the Executive Summary here for a detailed description of each of the fixes.

http://www.microsoft.com/technet/security/bulletin/ms08-aug.mspx


Quote:
http://voices.washingtonpost.com/securityfix/2008/08/microsoft_patches_26_security.html?nav=rss_blog

Microsoft Patches 26 Security Holes

Microsoft today released updates to fix at least 26 security vulnerabilities in its Windows operating systems and other software. At least 17 of those flaws earned Microsoft's "critical" rating, meaning they could be exploited to break into vulnerable systems with little or no help from the victim.

The 26 vulnerabilities are the most Microsoft has addressed since it had 25 in August of 2006, which also included 17 rated as critical, according to anti-virus firm Symantec.

Microsoft patched two holes in that have already been used in targeted attacks against people browsing the Web with Internet Explorer 6 and 7. In addition to those two fixes, one bundle of critical updates plugs five other security holes in Internet Explorer, most of which Microsoft said are present all versions of the browser.

Half of the flaws fixed in today's release were found in Microsoft Office and component programs, such as Excel, PowerPoint and Word. Redmond also released patches for vulnerabilities in Windows Messenger, Outlook Express and Windows Mail.

The updates are available through Microsoft Update or Automatic Updates. Office 2000 users can get Windows patches through either of those options, but will need to make a special trip to the Office Update page to grab the Office patches.

A patch-by-patch breakdown of today's updates is available from Microsoft, at this link here.


http://www.crn.com/security/210100346

 
Phoenix32890
 
  1  
Reply Sat 16 Aug, 2008 10:03 am
@Butrflynet,
So THAT's what that long update was about. (I get auto-update).
0 Replies
 
fishin
 
  0  
Reply Sat 16 Aug, 2008 11:45 am
@Butrflynet,
I wonder when they are going to patch that great big hole that is Vista? lol
High Seas
 
  0  
Reply Sat 16 Aug, 2008 01:51 pm
@fishin,
Never. Windows 7 is already in the works.

Anyway, I don't understand why anybody uses Explorer when Mozilla is so much safer.
Butrflynet
 
  1  
Reply Sat 16 Aug, 2008 01:53 pm
@High Seas,
This update isn't just for Explorer, that's why I made sure to specify the other software it applies to. Lots of folks don't use IE but use the other software that is also affected by this security update.
High Seas
 
  1  
Reply Sat 16 Aug, 2008 02:12 pm
@Butrflynet,
Yes, and the other parts of MS software (like MS Outlook) are at least as prone to succumb to malicious code as IE is. Excellent alternatives exist for them as well.
0 Replies
 
DrewDad
 
  3  
Reply Sat 16 Aug, 2008 03:08 pm
@fishin,
Quote:
I wonder when they are going to patch that great big hole that is Vista? lol

Turns out, people actually like Vista, as long as it's not called "Vista."

http://www.mojaveexperiment.com/
High Seas
 
  0  
Reply Sat 16 Aug, 2008 03:16 pm
@DrewDad,
Since the source of that alleged "experiment" is the seller of Vista it hardly qualifies as a priori unbiased.

Another bundle of poorly debugged device-drivers, as others observed before this.
0 Replies
 
fishin
 
  1  
Reply Sat 16 Aug, 2008 04:57 pm
@DrewDad,
I'd question the validity of that "test". Did Micorsoft tell those test subjects that the software they were using has zero security?
http://able2know.org/topic/120773-1#post-3354287
0 Replies
 
fishin
 
  1  
Reply Sat 16 Aug, 2008 05:01 pm
@Butrflynet,
btw, I ran the Windows Update utility on both my laptop and desktop this afternoon - both came back with only one very minor (and optional) "fix" and that wasn't to address any vulnerabilities. There weren't any patches listed for any of my Office applications.
0 Replies
 
 

Related Topics

So I just joined Facebook.... - Discussion by DrewDad
YouTube Is Doomed - Discussion by Shapeless
Internet disinformation overload - Discussion by rosborne979
Participatory Democracy Online - Discussion by wandeljw
OpenDNS and net neutrality - Question by Butrflynet
Internet Explorer 8? - Question by Pitter
 
  1. Forums
  2. » ALERT: Massive Security Update from MS for MS software
Copyright © 2021 MadLab, LLC :: Terms of Service :: Privacy Policy :: Page generated in 0.04 seconds on 04/23/2021 at 01:33:57