Ten security patches
Ten security patches
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com
ADVERTISEMENT

Microsoft issues patches for 21 software flaws

'Critical' vulnerabilities could allow attackers to gain complete control

Iain Thomson, vnunet.com 13 Oct 2004
ADVERTISEMENT

Microsoft has released 10 security patches for 21 weaknesses, in the company's largest security bulletin of the year.

The seven 'critical' and three 'important' patches variously affect versions of Windows, Internet Explorer, Windows Server 2003 and Excel.

All the critical flaws allow attackers to gain complete control over infected systems, turning them into 'zombie' machines to send out spam.

In one instance, a malicious programmer could instruct a computer to use all its available memory, forcing users to restart.

Microsoft has also re-released last month's patch for the vulnerability in its JPEG handling software.

"This is going to take a little time to patch properly but the results will be beneficial," said Professor Neil Barrett of Cranfield University's computer science department.

"As part of the monthly schedule, enterprises will be ready to install and update the IT infrastructure."

Microsoft said that all the critical updates in this month's release are already included in Windows XP Service Pack 2.

Customers running XP SP2 who have enabled Automatic Updates will automatically receive the sole update that applies.

Those users with Windows XP SP2 are unaffected by any of the critical patches but will have to do some repair work. Patch 38 is only rated as important for SP2 users, while for the rest it is critical.

"There's no great reason for the amount [of patches]," said Simon Conant, Microsoft's security programme manager. "To reduce the impact of any class of problem is the purpose of Service Pack 2."

See also:

Serious security vulnerabilities
Ten SP2 flaws leave XP users open to hackers
Millions at risk from 'silent and remote' attacks, claims security firm  11 Nov 2004
Trustworthy Computing
Microsoft claims ongoing commitment to security
Trustworthy Computing programme lives on  04 Nov 2004
Service Pack 2 migration fears
Companies still wary of XP Service Pack 2
Study claims half of IT managers expect migration 'issues'  03 Nov 2004
Istanbul collaboration client
Microsoft unveils real-time collaboration client
Istanbul client designed to integrate IM, voice and video  20 Oct 2004
Sans Institute
Top 20 security flaws revealed
Patching could reduce viruses, spam and cyber-exortion, says Sans Institute  11 Oct 2004
Security
Security
The latest wave of cyber-crimes and acts of vandalism have demonstrated once again that many systems are still vulnerable to attack.  15 Apr 2004

All Bugs & Fixes

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story
R E A D E R   C O M M E N T S
Post your comment Post your comment   What is this?

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
Senior C# Agile Web Developer, Online Gaming, London
| Aston Carter
Senior C# Agile Web Developer, Online Gaming, London My Client provides adult customers with high quality gambling and gaming services in an environment that is convenient, entertaining, fair, regulated and secure. My Client is one ... more >
EMC, NetApps, West London, Media
| Aston Carter
EMC, NetApps, West London, Media • NetApps FAS ... more >
Data Analyst / Trafficker / MI Analyst / Information Analyst - Online Gaming Company
| Abraxas
Data Analyst / MI Analyst – Leading Online Gaming Company A Data Analyst / Trafficker is sought by a leading online gaming company. The role encompasses all aspects of online advertising including data handling, communicating ... more >
Power Electronics- Field Applications Engineer-55K Package
| JAM Recruitment
Field Applications Engineer Power Electronics/Supplies Europe/Based Surrey Permanent Position £35-45k Basic+Bonus 10-15%+Car/Car allowance A global organisation involved with the design and development of power supplies actively requires a Field Applications Engineer to strengthen it existing ... more >
More job opportunities
Useful links: About us . Privacy policy . Terms & conditions . Site map . Bookmark this site . Feedback . Contacts
Consumer Technology websites:
Active Home Product reviews, competitions, news
Computeractive Software reviews, hardware reviews, buyers' guides, workshops, downloads
Gizmodo the daily gadget blog: technology news and reviews
PC Magazine your personal guide to technology
PCW software product reviews, hardware product reviews, buyers' guides, competitions
WebAct!ve what's happening on the web
What PC? helping you purchase the right computer, digital camera, peripherals, gadgets and more
Blogs:
Test Bed The PCW Labs blog, PCW Inter@ctive A reader blog from PCW. Your views, your comments, your say, Windows Watch Keeping an eye on the latest XP % Vista news
Jobs & Recruitment websites:
Accountancy Age Jobs Accountant jobs, jobs in finance, audit jobs, cima jobs, acca jobs, corporate finance jobs, management accounting jobs, finance director jobs, finance recruitment agency directory, Top 50 accountancy firms, accountant salary survey
Computing Careers IT jobs, Programmer jobs, Developer jobs, IT manager jobs, Project manager jobs, SAP jobs, Oracle Jobs, Java Jobs, IT recruitment agency directory, Top IT Employers 2005
Inquirer Jobs Software Engineer Jobs, firmware developer jobs, electronics engineer jobs
Other titles in the Incisive Media network:
Business Technology websites: BusinessGreen . Computing . Computing Business . CRN . The Inquirer . vnunet.com
Business & Finance websites: Accountancy Age . Best Practice . Financial Director . Management Consultancy
© Incisive Media Ltd. 2008
Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503