Microsoft Issues 7 Security Patches for July
Microsoft Corp. issued seven patches to fix a variety of flaws, five of which the company has deemed "critical" -- its highest security rating.
- By Becky Nagel
- July 11, 2006
Microsof Corp. today issued its latest "Patch Tuesday" release, offering as expected
seven patches to fix a variety of flaws, five of which the company has deemed "critical" -- its highest security rating.
Two of the critical patches fix Office vulnerabilities, one addresses Excel, and the two others address DHCP and Server Service flaws. If left unpatched, all of the critical flaws could expose systems to unauthorized remote code execution.
The remaining two patches are rated as "important." The first fixes an ASP.Net flaw that could allow attackers to bypass the software's security features and gain unauthorized access to objects in the Application folder by name. The other patches a hole in IIS when using Active Server Pages that could allow an attacker to take control of a system if the attacker has log-on credentials to upload content.
Details and implementation information are available on Microsoft's Web site here.