Microsoft Issues 7 Security Patches for July
Microsoft Corp. issued seven patches to fix a variety of flaws, five of which the company has deemed "critical" -- its highest security rating.
- By Becky Nagel
- July 11, 2006
Microsof Corp. today issued its latest "Patch Tuesday" release, offering as expected
seven patches to fix a variety of flaws, five of which the company has deemed "critical" -- its highest security rating.
Two of the critical patches fix Office vulnerabilities, one addresses Excel, and the two others address DHCP and Server Service flaws. If left unpatched, all of the critical flaws could expose systems to unauthorized remote code execution.
The remaining two patches are rated as "important." The first fixes an ASP.Net flaw that could allow attackers to bypass the software's security features and gain unauthorized access to objects in the Application folder by name. The other patches a hole in IIS when using Active Server Pages that could allow an attacker to take control of a system if the attacker has log-on credentials to upload content.
Details and implementation information are available on Microsoft's Web site here.
Becky Nagel is the vice president of Web & Digital Strategy for 1105's Converge360 Group, where she oversees the front-end Web team and deals with all aspects of digital strategy. She also serves as executive editor of the group's media Web sites, and you'll even find her byline on PureAI.com, the group's newest site for enterprise developers working with AI. She recently gave a talk at a leading technical publishers conference about how changes in Web technology may impact publishers' bottom lines. Follow her on twitter @beckynagel.