Microsoft Fixes 11 Windows Security Flaws
February 13, 2008 | by Geoff Duncan
Microsoft latest round of security patches address 11 security issues in Windows, six of which the company considers "critical."
Following a comparatively quiet update in January, Microsoft's monthly security update for February 2008 rolls out eleven security fixes to its Microsoft Windows operating systems, six of which the company considers critical. The most obvious of the bunch would enable a specially-crafted Web page to execute arbitrary code on a users' system; the vulnerability impacts Internet Explorer 5.01 up to Internet Explorer 7.
Three of the critical fixes land in Microsoft Office 2000, XP, and 2003, and also impact Office 2004 for Macintosh, although the more recent 2007 and 2008 released of Office for both platforms are immune. The problem could lead to remote code execution.
Two other vulnerabilities apply to Microsoft's Internet Information Services (IIS) server, while another two could be used in a denial-of-service attack that could force affected systems to restart. The final vulnerability only impacts the Microsoft Works File Converter, but it could enable an attacker to take over a remote system.
Windows Server 2008 and Windows Vista SP1 are not impacted by any of the new security bulletins.
The updates can be obtained from the Microsoft Update Web site, or using Windows' built-in update tool.
Post Your Comment...Comments
Comment on this article
Please keep your comments relevant to this article. Email addresses are not displayed, they are only required to verify you are human.
When you submit your comment, an email will be sent to your email address with a confirmation link. Once you have clicked on that confirmation link your comment will be posted.
HTML is not allowed.
RSS Feed
Be the first to comment on the article!