[ news_security_news ]
Microsoft’s Patch Tuesday
John Stith
Staff Writer
2006-03-14
 Insider Reports RSS Feed
Microsoft's monthly Patch Tuesday included an update rated critical, tied to Microsoft Office and one as important, tied to Windows itself. Users should go on and run the updates.
The critical bulletin, MS06-012, is tied to vulnerabilities in Microsoft Office. The problem could lead to remote code execution, which is bad. The flaw affects all versions of Office, from 2000 SP3 to current. Microsoft explains the problem:
On vulnerable versions of Office, if a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of the client workstation. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
The Windows problem, MS06-011 could allow an elevation of privileges. It affects pretty much all versions of Windows back to Windows 98. Microsoft explains:
An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
It's important for users at all levels to make sure the software is updated in order to prevent security problems from occurring in the future, sometimes not so distant. This is a remind to make sure not only to keep your operating systems upgraded, but also security as well.
Add to | DiggThis| Yahoo My Web
Get all the updates - click this link: 
About the Author:
John is a staff writer for SecurityProNews covering cyber security.
More news_security_news Articles
Insider Reports RSS Feed
|
|
iEntry 10th Anniversary
RSS
Archive
