News
Microsoft Issues 7 Security Patches for July
Microsoft Corp. issued seven patches to fix a variety of flaws, five of which the company has deemed "critical" -- its highest security rating.
- By Becky Nagel
- July 11, 2006
Microsof Corp. today issued its latest "Patch Tuesday" release, offering
as expected seven patches to fix a variety of flaws, five of which the company has deemed "critical" -- its highest security rating.
Two of the critical patches fix Office vulnerabilities, one addresses Excel, and the two others address DHCP and Server Service flaws. If left unpatched, all of the critical flaws could expose systems to unauthorized remote code execution.
The remaining two patches are rated as "important." The first fixes an ASP.Net flaw that could allow attackers to bypass the software's security features and gain unauthorized access to objects in the Application folder by name. The other patches a hole in IIS when using Active Server Pages that could allow an attacker to take control of a system if the attacker has log-on credentials to upload content.
Details and implementation information are available on Microsoft's Web site here.
About the Author
Becky Nagel is the vice president of Web & Digital Strategy for 1105's Converge360 Group, where she oversees the front-end Web team and deals with all aspects of digital projects at the company, including launching and running the group's popular virtual summit and Coffee talk series . She an experienced tech journalist (20 years), and before her current position, was the editorial director of the group's sites. A few years ago she gave a talk at a leading technical publishers conference about how changes in Web browser technology would impact online advertising for publishers. Follow her on twitter @beckynagel.