[ news_security_news ]
Another Problem For Patch Tuesday
John Stith
Staff Writer
2005-12-14
 Insider Reports RSS Feed
The monthly Microsoft event known as "Patch Tuesday" has become somewhat of a mixed blessing for Microsoft in recent months as they often come with caveats. This month, the updated corrected a "Critical" flaw and an "Important flaw. It also causes some approval problems for previously approved updates.
While the Software Update Services (SUS) 1.0 Service Pack 1 (SP1) won't encounter the problem, others are susceptible if you synchronize your server after December 12th. They include a workaround for the problem. The bulletin did say that if "Automatically approve new versions of previously approved updates" is selected in the SUS Options page, the software updates will appear updated but not unchecked. Information on how to set up the workaround is here.
The first portion of the update was a "Critical" fix. The impact is a remote code execution and it could allow devious attackers to take complete control of an affected system. The other, "Important" fix will fix a problem in the Windows Kernel that could allow privileges on an affected system. An attacker must have logon credentials to be able log on locally and exploit the vulnerability.
The third and perhaps most significant portion of this update cycle applies to malicious software removal, namely the nefarious Sony BMG rootkit. The now infamous rootkit row created tons of problems for a lot of people, not the least of which was Sony. Normally the "Malicious Software Removal tool gets rid of viruses and helps remove any infection they find. Microsoft update for this included removal of WIn32/IRCBot, Win32/Ryknos and WinNT/F4IRootkit (Sony's baby).
Hopefully this will keep the hackers at bay for a few days. Make sure you update your system ASAP.
About the Author:
John is a staff writer for SecurityProNews covering cyber security.
More news_security_news Articles
Insider Reports RSS Feed
|
|
iEntry 10th Anniversary
RSS
Archive
