News

Patch Tuesday Brings 8 Bulletins, 5 Critical

Microsoft on Tuesday released eight security bulletins as part of its monthly patching cycle. Five of the patches addressed critical security flaws, while three fixed important security bugs. Microsoft also released two non-security updates for Windows and re-released two security bulletins.

Critical flaws affecting Windows were a TCP/IP problem and an Internet Explorer problem. Other critical bulletins addressed problems in Exchange Server, MSN Messenger and Microsoft Word. An attacker can use any of the five flaws to take complete control of an affected system. The Windows flaws with Microsoft's less-serious "important" rating occurred in the shell, the kernel and with Microsoft Message Queuing.

Customers who have already applied Windows Server 2003 Service Pack 1, which posted March 30, are not affected by the Windows flaws. The re-released bulletins are MS05-002 for Windows 98/98 SE/ME and MS05-009 for Windows Messenger.

The Tuesday patch release marks the first time Microsoft included details of non-security Windows updates being posted at the same time. They include updates for the Windows Installer and the Background Intelligent Transfer Service (BITS).

Microsoft's malicious software removal tool also got an update. As of Tuesday, it now removes Hacker Defender, Mimail and Rbot and new variants of the Berbew, Bropia Gaobot, MyDoom and Sober worms.

More information on the updates is available here.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Closeup of the new Copilot keyboard key

    Microsoft Updates Copilot To Add Context-Sensitive Agents to Teams, SharePoint

    Microsoft has rolled out a new public preview for collaborative "always on" agents in Microsoft 365 Copilot, bringing enhanced, context-aware tools into Teams channels, meetings, SharePoint sites, Planner workstreams and Viva Engage communities.

  • Windows 365 Cloud Apps Now Available for Public Preview

    Microsoft announced this week that Windows 365 Cloud Apps are now available for public preview. This aims to allow IT administrators to stream individual Windows applications from the cloud, removing the need to assign Cloud PCs to every user.

  • Report: Security Initiatives Can't Keep Pace with Cloud, AI Boom

    The increasingly fast adoption of hybrid, multicloud, and AI systems is easily outgrowing existing security measures, according to a recent global survey by the Cloud Security Alliance (CSA) and exposure management firm Tenable.

  • World Map Image

    Microsoft Taps Nebius in $17B AI Infrastructure Deal To Alleviate Cloud Strain

    Microsoft has signed a five-year, $17.4 billion agreement with Amsterdam-based Nebius Group to expand its AI computing capabilities through third-party GPU infrastructure.