Site Network: | | Jongsma & Jongsma

Innovation in Information Security

Coverage of important Information Security and Information Technology news and events from the research team at S?nnet Beskerming.

Username: | Password: Contact us to request an account

Microsoft's November Patch Release Advance Notice

Last month Microsoft issued 11 patches with their monthly update as well as a Critical out of cycle Update for the RPC Service. Given the ease by which the RPC vulnerability could be targeted on many systems, it led many to fear that another Blaster or Sasser was on its way. Despite the availability of malware prior to the release of MS08-067, and a steadily increasing number of new worms targeting the vulnerability, there have yet to be any significant attacks against Windows systems using this particular vector (though that may still happen).

With the second Tuesday of November being next week, Microsoft have issued advance notification of the patches they expect to release with this month's updates.

Only two patches are expected this month, one Critical and one Important. Both patches are for as yet unidentified remote code execution vulnerabilities; with the Critical update for Windows and Office - specifically XML Core Services, and the Important update being for Windows.

Microsoft's Malicious Software Removal Tool will also be updated, along with the availability of high-priority non-security updates through WSUS and Windows Update.

7 November 2008

Social bookmark this page at eKstreme.
Alternatively, Bookmark or Share via AddThis

Do you like how we cover Information Security news? How about checking out our company services, delivered the same way our news is.

Let our Free OS X Screen Saver deliver the latest security alerts and commentary to your desktop when you're not at your system.

Comments will soon be available for registered users.