Just as announced Friday last week, Microsoft released 17 security bulletins and according updates, fixing overall more than 60 security vulnerabilities in Windows, Internet Explorer, Office and the Developer tools. According to the exploitability index of the security bulletin summary, 44 of the 64 security vulnerabilities got the assessment 1, which means that exploitation of the vulnerability by cyber criminals is very likely to happen soon.
Some interesting updates affect the Windows Kernel in which many null-pointer dereferences and so-called use-after-free errors have been fixed; proper pointer usage seems to be not just complicated for beginners. Also the 64-bit Windows Kernel Patch Protection gets updated to ensure no unsigned drivers can be loaded and used. The Internet Explorer update is accompanied by another round of new ActiveX killbits which disable these installable and often insecure IE extensions.
As the patches fix critical security issues of which even Microsoft think they get abused soon, users and administrators should hurry up to install them as soon as possible!
Dirk Knop
Technical Editor
Related Posts
- Big Patch Tuesday Heavy on Non-Critical Updates
Next Tuesday, December 14, Microsoft will release 17 security bulletins and updates to address the 40 vulnerabilities disclosed in them.
Only 2 of the updates have a maximum rating of Criti... - Patch Tuesday Updates Fix Critical Flaws in IE, DirectShow
Microsoft's Patch Tuesday for June 2010 is here. Microsoft released a total of 10 new security bulletins, addressing 34 separate vulnerabilities, including critical flaws in DirectShow and the Interne... - Patch Now: 10 Updates for June Patch Tuesday
After a relatively quiet May with only two security bulletins, Microsoft comes out with 10 security bulletins in June’s Patch Tuesday release. Three of these were rated “critical,” which means these ... - Two updates expected on Patch Tuesday next week
Microsoft has said it will push two security bulletins on Patch Tuesday next week.Both are rated “critical” and fix vulnerabilities that could allow remote execution of arbitrary code. One will fix vu... - 64 Vulnerabilities Fixed by April Patch Tuesday
Compared with last month’s three security bulletins, Microsoft released a record-breaking 17 security bulletins to address 64 publicly disclosed vulnerabilities. This month’s release inclu... - April 2011 Patch Tuesday
Once again, this day of every month is the scheduled release of updates from Microsoft. April 2011 Patch Tuesday from Microsoft contains 17 security bulletins (covering 64 vulnerabilities) 9 of the is... - Many Updates: Flash Player, Mac OS X, Firefox
Today is a busy day for those who want to keep their computers secure: Many updates are available, from Adobes Flash Player over Apples Mac OS X operating system to the Firefox webbrowser.
There is a ... - Patch Tuesday
Microsoft has issued 12 security bulletins making fixes in Windows, Office and Internet explorer.
MS11-003 -- Cumulative Security Update for Internet Explorer
Critical (Remote Code Execution)
Micro... - Adobe Patch Tuesday
Adobe has issued patches to fix a number of vulnerabilities in:
-- Adobe Reader X (10.0) for Windows and Macintosh;
-- Adobe Reader 9.4.1 (and earlier) for Windows, Macintosh and UNIX
-- Adobe Acro... - SSCC47- Now with transcript! Patch Tuesday, HBGary, Nasdaq hack, RBS WorldPay hacker and Pwn2Own
Michael Argast is my guest on this weeks Chet Chat as we discuss the weeks news you can use.
I have transcribed this episode (by hand) for the hearing impaired and those of you who prefer text to aud...
Posted on 13 April 2011. Tags: many, Patch, Tuesday, Updates
The above information is reprinted from and copyrighted © by Avira.
