Microsoft pencils in two patches for next week
Light load to start 2008 includes critical patch for XP, Vista
Computerworld - Microsoft Corp. will ease into the patch year by issuing just two security updates next week, the company said today.
The updates will fix flaws in Windows, Microsoft said in the prepatch notice. One will be rated "critical," the company's most serious ranking, while the other will be tagged as "important," the next-lower rating.
Tuesday's critical update is expected to patch a remote code execution vulnerability found in all currently supported versions of Windows, ranging from Windows 2000 SP4 to Windows Vista. The bug is especially threatening to users of Windows XP and Vista, according to Microsoft. The company ranked the flaw critical to those operating systems, but important to Windows Server 2003 and "moderate" to Windows 2000.
Although Microsoft provides only bare-bones information in its prepatch notification, this update may be a fix for the Web Proxy Auto-Discovery (WPAD) bug that the company's security team acknowledged a month ago, but didn't fix in time to make the Dec. 11 batch of updates. The WPAD vulnerability -- actually a flaw in how Windows PCs look up DNS information -- was originally patched in 1999, but resurfaced recently when a researcher pointed out that it had crept back into later versions of Windows.
Ryan Poppa, lead research engineer at nCircle Inc., however, had a different idea. "I'm leaning toward something else," said Poppa, "because WPAD doesn't seem to fit with the criticality of this."
Poppa based his speculation on how Microsoft rated the vulnerability for the different versions of Windows. "It mostly affects the workstations, and not servers," he said, referring to the important rating for Windows Server 2003 and the critical label for XP and Vista. "It might be [a fix for] a service that's not turned on by default on Windows 2003, but is on XP and Vista. It could be something like Remote Desktop, for example."
The second update scheduled for next week affects all versions of Windows except Vista. Because Microsoft classified it as a "local elevation of privilege" -- which typically means that an attack requires local access -- it ranked the vulnerability as important across the board.
Microsoft also plans to release five nonsecurity, high-priority updates via Microsoft Update and Windows Server Update Services (WSUS), and two nonsecurity, high-priority updates for Windows on Windows Update and WSUS. Microsoft Update downloads and installs not only fixes for Windows, but also updates for Office and several other Microsoft products.
The two updates and their associated explanatory bulletins will go live Tuesday around 1 p.m. Eastern time.
Read more about Security in Computerworld's Security Topic Center.
- Best Practices for Securing Hadoop Historically, Apache Hadoop has provided limited security capabilities. To protect sensitive data being stored and analyzed in Hadoop, security architects should use a...
- Top Tips for Securing Big Data Environments: Why Big Data Doesn't Have to Mean Big Security Challenges Organizations must come to terms with the security challenges they introduce. As big data environments ingest more data, organizations will face significant risks...
- 5 Ways Dropbox for Business Keeps Your Data Protected Protecting your data isn't a feature on a checklist, something to be tacked on as an afterthought. Download here to find out how...
- The Keys to Securing Data in a Collaborative Workplace Losing data is costly. IT professionals have spent years learning how to protect their organizations from hackers, but how do you ward off...
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different....
- Responding to New SSL Cybersecurity Threat The featured Gartner research examines current strategies to address new SSL cybersecurity threats and vulnerabilities. All Security White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!