On TV.com: Why Is Everyone in TV High School SO OLD
BNET Business Network:
BNET
TechRepublic
ZDNet

February 5th, 2009

MS Tuesday heads-up: Critical IE, Exchange flaws

Posted by Ryan Naraine @ 12:37 pm

Categories: Arbitrary Code Execution, Browsers, Exploit code, Hackers, Malware, Microsoft, Patch Watch, Pen testing, Punditocracy, Responsible disclosure

Tags: Ryan Naraine

Microsoft plans to ship four security bulletins next Tuesday with patches for a range of serious security vulnerabilities  affecting millions of Windows users.

Two of the four bulletins will be rated “critical,” Microsoft’s highest severity rating.  Those will cover remotely exploitable flaws in the Internet Explorer browser and the Microsoft Exchange Server.

[ GALLERY: How to configure Internet Explorer to run securely ]

The other two bulletins will carry an “important” severity rating and will provide fixes for code execution holes in Microsoft SQL Server and Microsoft Office (Visio).

The Internet Explorer update will apply to all supported versions of the Windows operating system, including Windows Vista and Windows Server 2008.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 37 Talkback(s)
Great article!
[quote]S: In your professional opinion, how can people avoid adware?

M: Um, run UNIX.[/quote]


Pretty much sums it up. A+!

That guy is a genius, he took advantage of all the ob... (Read the rest)
Posted by: AzuMao Posted on: 02/10/09 You are currently: a Guest | | Terms of Use
Secure IE:  cjc82s | 02/05/09
More effective method  Greenknight_z | 02/05/09
Even more effective method  tracy anne | 02/06/09
It's just that Linux has so many more vulnerabilities...  honeymonster | 02/06/09
It's just a matter of honesty... and stupidity  Archkittens | 02/06/09
IBM definetely support Linux. They also have integrity  honeymonster | 02/06/09
RE: ...support ...  n0neXn0ne | 02/06/09
No, it is what has to be said  honeymonster | 02/06/09
@honeymonster, No, it is what has to be said  n0neXn0ne | 02/06/09
More malware for Windows  honeymonster | 02/06/09
so we agree on honesty being the difference?  Archkittens | 02/06/09
No we do not agree  honeymonster | 02/06/09
Your 2X argument has flaws  eMJayy | 02/06/09
So you think  honeymonster | 02/07/09
Patches are not equal.  deedeedubya | 02/07/09
One vulnerability equals one patch  honeymonster | 02/07/09
didnt think you were such a zelot...  Archkittens | 02/09/09
Let's see you  AzuMao | 02/09/09
It is Linux which does not disclose all vulnerabilities  honeymonster | 02/09/09
@AzuMao  honeymonster | 02/09/09
Neutering n0neXn0ne - Proving Secuirty By Obscurity  PMC-CON | 02/10/09
you prove MY point, not yours.  Archkittens | 02/10/09
In the context  honeymonster | 02/10/09
Compare the Kernel to the Kernel  Archkittens | 02/10/09
@honeymonster  AzuMao | 02/10/09
Oh really?  storm14k | 02/06/09
RE: Even more-so ...  n0neXn0ne | 02/06/09
I hope these IE8 patches don't mess with my computer.  Gillman_Zorgam | 02/06/09
RE: MS Tuesday heads-up: Critical IE, Exchange flaws  Techref6060 | 02/06/09
Explain obscurity please  honeymonster | 02/06/09
RE: Explain ... I will ...  n0neXn0ne | 02/06/09
Exactly  honeymonster | 02/06/09
Neutering nOneXnOne - Security by Obscurity PROVEN  PMC-CON | 02/10/09
Great article!  AzuMao | 02/10/09
Explanation  AzuMao | 02/09/09
Just wait!!! a few weeks. Extra hidden FIX  crashalash | 02/06/09
deleted  honeymonster | 02/07/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
The best support in the Linux business
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
Learn more >>
Save time with automated shipping solutions
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
Visit the UPS Business Essentials Guide
Reduce risk. Reduce complexity. Increase reliability.
A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
Learn more >>
The more you simplify, the more you save
When you transition from your existing Red Hat environment to SUSE Linux Enterprise from Novell, you can recognize dramatic cost savings, perhaps as much 50%
Learn more >>
Keep Up With The Latest In Document Management with The DocuMentor.
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
Learn more >>
Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
Learn more about the free, six-month trial offer>>
advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

  • Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
  • More from IBM
  • Innovate your business' process model, play against the market, compete against others on our scoreboards and WIN! Try INNOV8 2.0: A BPM Simulator
  • Enabling Real-World Business Transformation through IBM Service Management Read the EMA Analyst Report
Click Here