Patches for IE should be our first priority this month, with several vulnerabilities that are ripe for malicious attacks facing us.
There’s still no sign of Windows XP SP3 in the near future, but Windows Server 2008 is receiving its first patches, and Vista SP1 is subject to a much-needed patch for an earlier patch that’s proved troublesome.
The auto-update routines for QuickTime and iTunes, two programs that play multimedia files, have quietly begun installing Apple’s Safari browser unless PC users are sharp enough to turn off a little-noticed option.
This week’s abomination makes me question the entire concept of trusting auto-update mechanisms as a way of seeking better security.
Microsoft released this week four different security bulletins for MS Office, but (with a few exceptions) they seem to shape us as pretty tame updates.
The old saying about March weather coming in like a lion, but going out like a lamb, is just about the way this patching month has shaped up.
If you’re responsible for updating your company’s systems,
you now face service packs (and related problems) for XP, Vista, and Microsoft’s .NET Framework — and even Mac enthusiasts have to deal with repercussions from the recent 10.5.2 OS X upgrade.
If that weren’t enough, those of you who haven’t yet deployed the latest MS Office service packs will find plenty of quirks to chew on this week.
Microsoft on Feb. 19 halted automatic downloads of a Vista patch that caused numerous PCs to reboot uncontrollably.
The patch, numbered 937287, is a “prerequisite” or “preliminary” patch that was intended to prepare machines for the installation of Vista Service Pack 1, which is expected to be released in March.
A whopping 11 security patches and 7 nonsecurity patches were released this month for Windows, Firefox, Acrobat, and QuickTime, which means a potentially rough patching month.
Rather than giving your loved ones red roses or fat-laden chocolates for Valentine’s Day, show them how much you care by fixing their systems with these updates that the patch gods have sent us.
In a change from its earlier statements, Microsoft now reports that some versions of Windows Server 2003 have a security flaw rated “critical” rather than merely “important.”
If you didn’t install security bulletin MS08-001 after its release on Jan. 8 — because you didn’t feel you really needed it when it first came out — you should make time now to test your box and install the patch.
This week, I’ll show you how to prevent the automatic deployment of Silverlight and a new build of Internet Explorer 7 throughout your company via Microsoft’s WSUS utility.
Optional software isn’t mandatory, and I urge you to skip the Silverlight download in particular unless you have a specific need for the software.