Microsoft patches 23 security flaws (Here we go again)

Electronic News.Net ^ | August 9, 2006 | Ciara O'Brien

[Zakeet]

Microsoft, on Tuesday, issued yet another bumper crop of security updates to fix over 20 flaws in its software, its biggest update since it began the regular bulletins.

The 12 updates fix a staggering 23 flaws in Windows software, with 15 of them rated as critical, Microsoft's most severe rating. One of the 15 critical vulnerabilities has been tagged as a possible worm candidate; anonymous users can exploit the Service Server vulnerability remotely, regardless of the operating system.

Three of the flaws were discovered in Office products, including Powerpoint, while 20 were present in the Windows system. Mac users also need to beware, as the Powerpoint vulnerability can affect their systems.

Industry experts said that although 11 of the flaws were already known, the remaining 12 were discovered by Microsoft.

"This month 11 patched vulnerabilities were already public or were already exploited in-the-wild prior to [Tuesday's] announcements. Among them is the vulnerability in Powerpoint that was exploited in targeted attacks in mid-July," said security firm McAfee in a post on its Avert Labs blog.

This is the third month in a row that Microsoft has issued a large number of security patches for its software. In fact, according to McAfee, Microsoft has already dealt with more vulnerabilities this year than in 2004 and 2005 combined.

[Zakeet]

This is actually good news according to Microsoft spin.

According to their spokesman, "rather than an indictment of the security of Microsoft's software ... this may actually be a positive sign, with Microsoft reacting to the flaws more rapidly. ... Microsoft is not the worst [because} Oracle only issues patches quarterly."

[Skooz]

I updated mine this morning.

No big deal.

[kinoxi]

In other news, Apple still ignores freebsd vulnerabilities but no one cares.

[Cheburashka]

Thank God they stopped supporting Windows 98 last month.

Now they have more manpower to fix the holes in Windows 2000 and XP.

[RFC_Gal]

Which FreeBSD vulnerabilities has Apple ignored?

[kinoxi]

FreeBSD
Name one that Apple has patched.

[RFC_Gal]

That isn't the way these things work.

You made a statement that you know need to support. All I am asking is that you provide proof of your statement which should not be a hard thing for you to do.

[holymoly]

Thank God they stopped supporting Windows 98 last month.

Now they have more manpower to fix the holes in Windows 2000 and XP.

While XP needs all the help it can get, I doubt support of Win98/ME was taking much manpower.

Anyone can visit Windows 98 Downloads, and count the number of "critical" updates. I think I counted 22, dating back to 1999.

At least one, the "Windows IDE Hard Drive Cache Package", while perhaps being "critical", doesn't actually have anything to do with security.

[RFC_Gal]

know shoud be now.

sorry about that.

[kinoxi]

Mac expo 2005 was hosted on Windows 2003 servers. Haven't checked on '06 yet. Maybe Apple trusts their software this year. I do not know.

[dennisw]

M$ likes these flaws and vulnerabilities. This makes the lemmings "migrate" over to Vista

[RFC_Gal]

That has nothing to do with your original statement.

What FreeBSD holes hasn't apple patched? You said they exist so name them.

[kinoxi]

I am supposed to waste my time cataloging FreeBSD exploits for you? You are online, there are multiple sites to satiate your curiosity. Secunia seems impartial enough.

[RFC_Gal]

You made a claim - now you refuse to back it up. Perhaps you didn't know what you are talking about and are now trying to cloud the issue?

BTW FreeBSD is used for the Unix/POSIX userspace while a version of Mach is used for the kernel.

[kinoxi]

I don't post vulnerabilities.
I try to avoid posting insults.
FreeBSD vulnerabilities exist in your preferred OS.
The exact number is unknown.
The Ipod craze will most assuredly educate the general populace on Mac weaknesses.

[RFC_Gal]

Seeing as how my prefered desktop OS is Ubuntu Linux I would love for you to list one FreeBSD vulnerability in it.

FYI - I don't really care for the ipod, I think they are overpriced and I do not care for the interface.

See what happens when you make assumptions?

[kinoxi]

I put the A$$ in assumptions.
FreeBSD vulnerabilities are numerous. Can I ask why you're defending Mac OS?

[RFC_Gal]

Not defending macos. I just don't like people posting random unsupported things in tech or science threads.

[kinoxi]

There is ample information. One thing I like about freeware.
Name one FreeBSD patch issued by Apple.

[PeteB570]

No more Windows 98???????

What am I going to do now? Had this critter for 7 years and it's just starting to get broke in.

Shuuuuewwww, I'm still learning how to use all the new features I have now instead of that old 95 series.