Computerworld - 11 Microsoft security updates due next week

Friday | 5 December, 2008

11 Microsoft security updates due next week

Microsoft will ship 11 security patches next week, with critical fixes for Active Directory, Internet Explorer, Excel, and the Host Integration Server

Robert McMillan (IDG News Service) 10/10/2008 08:07:00

Next week will be a busy one for system administrators as Microsoft is planning to ship 11 security updates -- four of them rated critical -- for its products.

The patches will include fixes for critical security bugs in Windows Active Directory, Internet Explorer, Excel and the Microsoft Host Integration Server, which integrates Windows computers with IBM mainframes, Microsoft said Thursday in a note on the patches.

The critical Active Directory bug affects Microsoft Windows 2000 Server, but not other versions of Windows, Microsoft said. The Excel bug affects both Windows and Mac OS X versions of the product.

There will also be six less-critical updates, rated "important," by Microsoft, for Windows, and a "moderate" patch for Office. All of these updates are expected around 10 a.m. Pacific time on Tuesday.

Despite the large number of patches, Microsoft hopes that customers will be a little more secure than usual next week. That's because the October Patch Tuesday will mark the debut of two Microsoft security initiatives: The Microsoft Active Protections Program, (MAPP) and something called the Exploitability Index.

The MAPP program gives security vendors an edge on writing protection against new attacks by offering them an early peek at the bugs that Microsoft will be patching each month. The program is designed to help Microsoft's security partners avoid a mad scramble as they figure out how attackers might exploit the latest Microsoft flaws. October marks the first time that companies have been given this early information.

The Exploitability Index should make it easier for customers to decide which patches to install first by giving Windows users a better idea of which bugs Microsoft finds most worrying. The index, which will be published with Microsoft's security bulletins next week, will separate the flaws that will simply cause a system crash from more serious bugs that could be used to give attackers control of a victim's machine.

The vulnerabilities listed in Microsoft's bulletins will be rated as "Consistent Exploit Code Likely," "Inconsistent Exploit Code Likely" or "Functioning Exploit Code Unlikely."

Computerworld Buyer's Guide - Vendors Matched to this Article

HAL Data Services , Dimension Data

More about Microsoft, IBM, Excel

More by Robert McMillan

Computerworld Buyer's Guide - Vendors Matched to this Article

HAL Data Services , Dimension Data

More About: microsoft patches

Additional Resources

Executive Guides

Discovering the Service Management approach to IT

Whitepapers

Read up on the latest ideas and technologies from companies that sell hardware, software and services.

Zones

Zones provide focussed content from Computerworld and leading technology partners.

RSS Feeds

Computerworld Today

Show all RSS feeds

Market Place

Learn to use EMC Celerra IP Storage with Vmware Infrastructure 3 over iSCSI and NFS | Download white paper now

CRM Webcast: Learn how to find a CRM solution that fits into your existing business environment. View now.

Learn how to prioritize services with IT Service Management (ITSM). Watch the Computerworld webinar now!

Beat the credit crunch. 0% for 24 months. Just for small business. Offer ends 24th Dec!

Discover best practice strategies for the archival and removal of .PST files using email archiving

Discover why Ubiquitous Mobility is a key future component of Network Architecture | Download Forrester report now

Understand the Value of Unified Communications | Download white paper now

IDC Report | Making the Business Case for IT Consolidation | Download now

New webcast | Discover the advantages of an open architecture multi-vendor network solution | View now

IDC Report | IT Service Management Needs and Adoption Trends | Download now

Level the playing field. Report unlicensed software. $5000 reward. Contact the BSA today.

More >

Smart SOA World Tour

Discover how SOA can create smarter outcomes for your business.

Attend and learn:

How SOA is helping leading companies to become more agile
Where you should be applying SOA processes in your company
The top SOA implementation mistakes to avoid

Click here for more information.

+

Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36

This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure.

[ MP3 (6.85 MB) | Windows Media (6.93 MB) ]
+

Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22

CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks.

[ MP3 (4.61 MB) | Windows Media (4.67 MB) ]
+

Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33

This week we look at sustainability and the development of multicore technologies to build multi-petascale systems.

[ MP3 (3.47 MB) | Windows Media (3.52 MB) ]
+

IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55

This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport.

[ MP3 (3.34 MB) | Windows Media (3.38 MB) ]
+

IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47

Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.

[ MP3 (3.58 MB) | Windows Media (3.63 MB) ]

More >

Fortinet November Threatscape Report Shows Calm Before Holiday Storm 2008-12-05 16:00:00+11
Epicor® Cited as an Order Management Solutions Leader by Independent Research Firm 2008-12-05 15:52:00+11
F-Secure: Growth In Internet Crime Calls For Growth In Punishment 2008-12-05 13:00:00+11
International researchers gather in Sydney to preview the clever web 2008-12-05 09:48:00+11
Borderless corporate networks to shift focus to secure content management in Australia in 2009 2008-12-04 16:06:00+11

More >

Whitepaper

Read Whitepaper

Solve Exchange Mailbox Storage Issues Once and for All

Join industry expert Bob Spurzem and Chuck Arconi of Fox Hollow to discover how to reduce Exchange total storage and keep it at a manageable level. Learn how Exchange storage growth can be contained without sacrificing security and accessibility.

Enterprise IT Buyer's Guide

Find Technology Vendors Fast

Find vendors by name | Find by category

Not a member?

Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36

Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22

Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33

IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55

IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47

Fortinet November Threatscape Report Shows Calm Before Holiday Storm 2008-12-05 16:00:00+11

Epicor® Cited as an Order Management Solutions Leader by Independent Research Firm 2008-12-05 15:52:00+11

F-Secure: Growth In Internet Crime Calls For Growth In Punishment 2008-12-05 13:00:00+11

International researchers gather in Sydney to preview the clever web 2008-12-05 09:48:00+11

Borderless corporate networks to shift focus to secure content management in Australia in 2009 2008-12-04 16:06:00+11

Solve Exchange Mailbox Storage Issues Once and for All

Buying Guides

Latest Products

Buying Guides