Four critical updates this Patch Tuesday

Posted by   Virus Bulletin on   Oct 14, 2008

11 updates to be issued by Microsoft in October's monthly patch release: 4 critical.

Microsoft has prepared a total of 11 updates for the October round of its monthly patch release cycle, with four updates being rated 'critical'.

The four critical updates cover vulnerabilities in Active Directory, Internet Explorer, Microsoft HIS (Host Integration Server) and Excel. All the vulnerabilities could be exploited to execute arbitrary code from a remote source, hence their being given the highest rating.

In addition to the four critical updates, six more are rated 'important', while just one is assigned the lower rating of 'moderate'.

As always, users are advised to ensure they install updates as soon as possible to optimise security. More details on the release are in the advance notification, here.

Users are also warned to be wary of fake emails that have been circulating recently, which are designed to fool the recipient into believing they are from Microsoft and contain urgent updates, but which actually contain malicious code. While not crafted with a great deal of skill - for example including grammatical errors and referring to several versions of Windows which are no longer supported - their timing (to more or less coincide with the Patch Tuesday cycle) may be enough to fool unwary users. Microsoft, of course, never sends its updates as attachments to emails, and users are advised to receive updates through the Microsoft Update and Windows Software Update Services components or download directly from the Microsoft site.

Posted on 14 October 2008 by Virus Bulletin

twitter.png
fb.png
linkedin.png
hackernews.png
reddit.png

 

Latest posts:

VB2020 TIPS presentations: cybercrime in the DACH region and ransomware in LATAM

As part of VB2020 localhost we were proud to co-host the Threat Intelligence Practitioners' Summmit (TIPS), put together by the Cyber Threat Alliance. In a series of blog posts we highlight some of the talks presented in the Summit and the important…

VB2020 TIPS presentation: Intelligence Sharing for Supply Chain Security

As part of VB2020 localhost we were proud to co-host the Threat Intelligence Practitioners' Summmit (TIPS), put together by the Cyber Threat Alliance. In a series of blog posts we highlight some of the talks presented in the Summit and the important…

VB2020 localhost is over, but the content is still available to view!

VB2020 localhost - VB's first foray into the world of virtual conferences - took place last week, but you can still watch all the presentations.

New additions complete the VB2020 localhost programme

The programme for VB2020 localhost - the first virtual, and entirely free to attend VB conference - is now complete, with new additions to both the live programme and the on-demand programme.

VB2020 localhost call for last minute papers: a unique opportunity

Why VB2020 localhost presents a unique opportunity for you to share your research with security experts around the globe.

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.