Microsoft plans patch for critical flaw in Word next Tuesday - restercoorms
It's the number one Thursday of October. Do you know what happens on the first Thursday of each month? Microsoft provides an advance notification of the protection bulletins IT plans to release happening the second Tuesday of the month—more commonly celebrated as Patch Tuesday.
Following an unusually light Patch Tuesday in September, Microsoft was forced to deal with the specter of a zero-solar day effort beingness put-upon in the wild to onrush Internet Explorer. Microsoft responded with an unfashionable-of-band patch reflecting the urgent nature of the scourge.
IT admins will embody a brief busier in October. According to the Microsoft Security measures Bulletin Advance Apprisal for October 2012, Microsoft has a total of seven new security bulletins slated for release next week. Six of the seven are rates merely as Great, while the seventh—a patch for a flaw affecting altogether backed up versions of Microsoft Word—is rated as Critical for Word 2010.
St. Andrew Storms, director of security operations for nCircle, stresses the urgency of the patch for Microsoft Word. "The bulletin that looks most serious is a rare Microsoft Word update tagged Eastern Samoa indispensable for the post new Word 2010, but downgraded to important in Word 2003. I can't remember the last metre we saw a critical bug that affected all versions of Word. It makes me remember the stinking old days when Son was a nearly constant source of security problems for businesses."
Marcus Carey, a security researcher with Rapid7, points come out that the exposure rear end be triggered by opening—or even previewing—a malicious file. "This vulnerability could final result in the stark compromise of a system if exploited. Since this is an Office staff vulnerability this may affect both Windows and Macintosh users."
Some bulletins, corresponding Bulletin 7, indicate a potentially alarming fact. The bulletin impacts versions of SQL Server going back to 2000, and indicates a blemish in code that has been reused for more than a 10. According to Alex Horan, a senior product manager with CORE Security, "When you consider the number of versions that are affected you quickly fall to the determination that these vulnerabilities have existed for quite a yearn period of metre and have potentially been battered without user knowledge throughout several generations of the software
nCircle's Storms also noted that Microsoft is issuing indefinite final reminder that changes are impending for acceptable key lengths for RSA keys. "If you haven't already fixed this time is working out. If your key lengths are to a fault poor your Microsoft applications wish stop working, so it might be worth your time to review this one much time."
Tune in next Tuesday for more details when the Patch Tuesday surety bulletins are officially released.
Source: https://www.pcworld.com/article/461538/microsoft-plans-patch-for-critical-flaw-in-word-next-tuesday.html
Posted by: restercoorms.blogspot.com
0 Response to "Microsoft plans patch for critical flaw in Word next Tuesday - restercoorms"
Post a Comment