Microsoft asked for a patch do-over Thursday as it re-released one of last week's security updates after realizing the original fix didn't do the job.
"After we released MS08-030 we learned that the security updates for Windows XP SP2 and SP3 might not have been fully protecting against the issues discussed in that bulletin," Christopher Budd, a spokesman for the Microsoft Security Response Center (MSRC), said in an e-mail. "As soon as we learned of that possibility, we mobilized our Software Security Incident Response Process (SSIRP) to investigate the issue."
MS08-030 debuted June 10 as part of a group of seven security updates that patched 10 vulnerabilities in Windows and other Microsoft software. Called out by several analysts last week as the most interesting fix of the bunch, MS08-030 was supposed to plug a hole in Windows' implementation of Bluetooth, the short-range wireless protocol.
The update was one of three pegged "critical," the highest threat ranking in Microsoft's four-step scoring system.
Although the patch offered last week for Windows Vista and the 64-bit versions of Windows XP did the trick, the fix for the 32-bit editions of XP, including the new Service Pack 3 (SP3), did not, said Budd. He also promised that Microsoft would find out how the non-patching patch made it through the company's testing.
Human error, he added, is the likely cause. "As part of our standard process, we're beginning an investigation into how this happened," Budd said in a short entry to the MSRC's blog today. "We're just starting this investigation, but early on, it appears that there may have been two separate human issues involved. When we're done with our investigation, we'll take steps to better prevent it in the future."
Microsoft has had to re-release patches before. It most recently went back to the drawing board in March, when it was forced to re-issue a flawed update that had caused some versions of its Excel spreadsheet to make math mistakes.
The revised MS08-030 bulletin stated that the new patch for Windows XP has been seeded to the usual Microsoft distribution channels, including Automatic Updates, Windows Update and Windows Server Update Services (WSUS).
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Discover the advantages of an open architecture multi-vendor network solution
IT Service Management Needs and Adoption Trends: An Analysis of a Global Survey of IT Executives
Making the Business Case for IT Consolidation
Data grids and service-oriented architecture
Achieving the impossible: Unlimited application scalability
Strategies for Eliminating .PST Files
Email Archiving Implementation: Five Costly Mistakes to Avoid
Refresh your AUP: Top tips to ensure your acceptable use policy is fit for purpose
Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
ComOps Deploys Corporate Performance Reporting Solution For Healthcare Test Manufacturer 2008-12-02 10:09:00+11
Mornington Peninsula Shire implements Objective to manage knowledge and deliver service excellence 2008-12-02 09:56:00+11
Virtual magic: HR specialist throws out 40 servers, adds 8TB SAN and saves $100,000 for disaster recovery 2008-12-01 15:28:00+11
Sybiz adds up for SMEs in downturn 2008-12-01 14:27:00+11
EXCOM scores back-to-back award trifecta 2008-12-01 10:46:00+11
Discover the advantages of an open architecture multi-vendor network solution
View this webcast and discover the drivers for changing network design practices, why many organisations are changing their approach to network architecture and how enterprises should be moving forward with open architecture multi-vendor network solutions. Register now and learn how your business can maximize the business value of the enterprise network.
Buying Guides
Latest Products
