On TechRepublic: Five super-secret features in Windows 7

BNET Business Network:: BNET; TechRepublic; ZDNet

Zero Day

Ryan Naraine and Dancho Danchev

Get Zero Day via:: Mobile; RSS; Email Alerts
Bios:: Ryan’s Bio; Dancho’s Bio

March 5th, 2009

Coming on Patch Tuesday: 3 Windows bulletins, 1 critical

Posted by Ryan Naraine @ 12:05 pm

Categories: Arbitrary Code Execution, Browsers, Complex Attacks, Data theft, Denial of Service (DoS), Exploit code, Microsoft, Patch Watch, Responsible disclosure, Spam and Phishing, Viruses and Worms, Vulnerability research, Windows Vista, Zero-day attacks

Tags: Microsoft Corp., Bulletin, Attack, Microsoft Windows, Operating Systems, Security, Software, Ryan Naraine

Microsoft today outlined plans to ship three security bulletins for software vulnerabilities in the Windows operating system.

One of the three bulletins will carry a “critical” rating, meaning that it will cover flaws that could be exploited to launch remote code execution attacks.

According to the advance notice from Microsoft, the other two bulletins are rated “important” and can expose Windows users to spoofing attacks.

All three bulletins require a restart after deployment.

All supported versions of Windows will be affected by next Tuesday’s releases, including the newer Windows Vista and Windows Server 2008.

This month’s batch of patches will NOT include a fix for a known — and under attack — code execution vulnerability affecting Microsoft Office. Microsoft has already issued a security advisory on the Office attacks (via rigged Excel files) with some suggested mitigation guidance.

Ryan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.

Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

Talkback
Most Recent of 29 Talkback(s)

Thread View
Flat View

RE: Coming on Patch Tuesday: 3 Windows bulletins, 1 critical: does this flaw affect win 7? or just6 vista? (Read the rest); Posted by: GAXXIS Posted on: 03/10/09 You are currently: a Guest | Log in | Terms of Use

If this were Apple, the entry would read as follows frgough | 03/05/09

You go ahead and limit your use. Cayble | 03/05/09

The fact that you aren't seeing them doesn't mean they aren't there InAction Man | 03/06/09

Funny, I've flown over 1000 times in the last 20 years... 914four | 03/06/09

If this were Apple, the entry would read as follows play720454 | 03/05/09

I can't believe MAC users KrazyGuy | 03/05/09

Chicken Little Apple users RDrr | 03/05/09

You forget, that Apple makes money... JCitizen | 03/05/09

I don't think you realize.. msalzberg | 03/06/09

Duh! Wha'd I jus' say? JCitizen | 03/10/09

You forgot to mention the Apple's Jedi mind trick... david@... | 03/06/09

What Mac and Linux Users DON'T Tell You dec33162 | 03/06/09

RE: Coming on Patch Tuesday: 3 Windows bulletins, 1 critical alan.douglas@... | 03/05/09

RE: Coming on Patch Tuesday: 3 Windows bulletins, 1 critical icshades | 03/05/09

RE: Coming on Patch Tuesday: 3 Windows bulletins, 1 critical rMatey | 03/05/09

RE: Coming on Patch Tuesday: 3 Windows bulletins, 1 critical vk4dcc | 03/05/09

That is right. You got to give the malware-writers a go first. (nt) hkommedal | 03/05/09

3 Pathes Tuesday, only 40,000 left to go! mavr1c | 03/05/09

Won't help... jeanyoungblood | 03/05/09

Fixing 80073712 error LeeD | 03/05/09

Hiding the update... JCitizen | 03/05/09

IE 7 error 80073712 mietz | 03/06/09

There are fixes to that error code jerry@... | 03/06/09

Microsoft's Solution dec33162 | 03/06/09

Only 2 bulletins for Vista, NOT 3 qmlscycrajg | 03/06/09

Only 2 bulletins for Vista, NOT 3 qmlscycrajg | 03/06/09

RE: Coming on Patch Tuesday: 3 Windows bulletins, 1 critical imagines@... | 03/09/09

Instead of brow beating each other.... El Condor | 03/10/09

RE: Coming on Patch Tuesday: 3 Windows bulletins, 1 critical GAXXIS | 03/10/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now
Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
VMware Infrastructure: A Guide to Bottom-Line Benefits VMware Frustrated by the costs of maintain ever larger data centers?or building ... Download Now

Recent Entries

Blogs From Our Sponsors

Top Rated

Facebook password-reset spam is Bredolab botnet attack+46 votes
Thousands of web sites compromised, redirect to scareware+43 votes
Microsoft confirms 'detailed' Windows 7 exploit+43 votes
Firefox hit by multiple drive-by download flaws+41 votes
Which antivirus is best at removing malware?+39 votes
iHacked: jailbroken iPhones compromised, $5 ransom demanded+32 votes
New LoroBot ransomware encrypts files, demands $100 for decryption+28 votes
Mac OS X mega patch covers 58 security vulnerabilities+26 votes

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Archives

Favorite Links

41

ZDNet Blogs

White Papers, Webcasts, and Downloads

The Impact of Virtualization Software on Operating Environments VMware Today's use of virtualization technology allows IT professionals to ... Download Now
Email Security and Archiving - Clearer in the Cloud Google The time is NOW for businesses and organizations of all sizes to implement ... Download Now
Reducing Server Total Cost of Ownership with VMware Virtualization Software VMware VMware virtualization enables customers to reduce their server TCO and ... Download Now

Popular Sanity Saver Videos

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More