Today Microsoft has released its Advance Notification for the month of September Patch Tuesday Updates. There will be a total of four security Bulletins next Tuesday, September 9, which will address several vulnerabilities in its products, one of them is marked critical and rest are important in severity.
CRITICAL PATCH
This time also administrators can expect a cumulative patch release for Internet Explorer which will address a number of remote code execution vulnerabilities in the browser. As usual, Internet Explorer(IE) update is rated Critical on Windows client systems and Moderate on servers.
The critical update will address a problem or problems in Internet Explorer affecting all versions of Windows.
IMPORTANT PATCHES
The remaining three scheduled bulletins, all rated important in severity, include a an elevation of privilege bug affecting Windows 8 and 8.1 as well as Windows Server 2012 and 2012 RT.
The bulletins also include patches for two potential denial-of-service (DoS) vulnerabilities, one patches a .NET denial-of-service vulnerability in Windows Server 2003, 2008 and 2012, and on the client side OS back to Vista, and other patches in Microsoft’s Lync instant messaging and collaboration software. - See more, respectively.
MICROSOFT TO RELEASE MALICIOUS SOFTWARE REMOVAL TOOL
The company will also roll-out a new version of the Windows Malicious Software Removal Tool and probably some of non-security updates to various Windows versions as well, which has not been disclosed yet.
MICROSOFT BLOCKING OLDER ActiveX CONTROLS IN INTERNET EXPLORER
Back in August, Microsoft announced that the company will release a change to its Internet Explorer on Update Tuesday that will block old and out-of-date ActiveX controls. It will warn users when the browser attempts to load an out-dated ActiveX controls.
Initially, the list will contain only old Java versions. The out-of-date ActiveX control blocking feature works on:
- Windows 7 SP1, Internet Explorer 8 through Internet Explorer 11
- Windows 8 and up, Internet Explorer for the desktop
- All Security Zones—such as the Internet Zone—but not the Local Intranet Zone and the Trusted Sites Zone
ADOBE ALSO READY WITH NEW UPDATES
Meanwhile, Adobe is also planning to release security updates for its own products, including Adobe Reader and Acrobat XI (11.0.08) and earlier versions for Windows and Macintosh, on the same day. The security updates will address critical vulnerabilities in its software applications. Adobe Security Bulletin is here.
Note: As we are continuously encouraging our readers to stop using Windows XP if they are currently using it. Microsoft will not release any security update for its older version of Windows XP, as it stopped supporting Windows XP Operating System. So, if you are still running this older version of operating system on your PCs, we again advise you to move on to other operating system in order to receive updates and secure yourself from upcoming threats.
Reference- http://thehackernews.com/
No comments:
Post a Comment