Two separate updates for all IE versions prevent carpet-bombing attacks that are already targeting the browser.
One of the IE patches blocks remote-code execution on XP and Vista PCs that also have Apple’s Safari browser installed.
Windows may be the primary target of today’s malware authors, but it’s far from the only one.
Keeping your applications and media players up-to-date is as important as applying the latest patches for your operating system.
If you installed XP Service Pack 3 or Windows Server SP2 after September 2008, you need to reapply an important security update.
In addition, if Windows Update offers your XP or Server 2003 system Microsoft’s security bulletin MS08-067 patch, you should install it — even if you’ve previously done so.
Microsoft’s instructions for disabling AutoRun in Windows XP, which I referred to last week, pointed to an incorrect Registry key.
It’s easy to find the correct key, however, and understanding this Registry tweak can give you fine-grained control over the kinds of external media that AutoRun is allowed to work on.
Nearly 18 months after it was discovered, Microsoft has finally fixed a hole in the AutoRun function of older Windows versions that allowed viruses to spread via external storage devices.
While it’s good to know Microsoft is finally listening to the complaints of the Windows community, the company’s delay in applying important patches put our systems at risk unnecessarily.
We’re seeing the first exploits attempting to take advantage of the Internet Explorer vulnerabilities addressed in this month’s security update from Microsoft.
The fix causes pages on some trusted sites to stop loading, which requires a patch of its own.
One of the updates released by Microsoft this week causes some applications using Visual Basic controls to fail.
The short-term solution is to remove the update, but be sure to reinstall it once your VB apps have been corrected.