I printed out this week’s "Book-of-the-Month" — otherwise known as
Microsoft’s ten new security bulletins — with gleeful anticipation. That’s
especially because we have two new patch tools to try out on these babies.
The old saying is, "April showers bring May flowers," but in this case we got
service packs instead.
For a week that only resulted in one patch bulletin, there still seems to
be a lot for me to wade through this month.
Where has the week gone? We started with a new pope, we’re still shaking out
issues with both Windows 2003 SP1 and Microsoft’s April patches, and I’ve decided that
turning Japanese is the way to go. At least when it comes to security bulletins,
After a month with no security bulletins in March, it’s back to our normal
evaluation process. This month, in addition to eight security bulletins
available via Windows Update, we’ve got two nonsecurity patches, Windows 98 and Me re-releases — and, oh, did I happen to mention some
newfound browser insecurities?
The past week brought us a passle of work. Some of it is very worthwhile, to be
sure, but all of it is a bit more effort to add to our already-overburdened
Today is going to be FUD Roundup Day at the ‘ol Patch Corral. You’ve heard of
FUD, right? Fear, Uncertainty, and Doubt? Once used only in relation to IBM,
then in reference to Microsoft, it seems everyone likes to throw around a bit of FUD
to get us consumers upset and concerned.
Last Friday, Microsoft gave me the word that I could take the day off. "No
patches for Tuesday!", came the word from the North. But before we all head
to the beaches or ski slopes or your favorite watering holes, does this truly
mean we are absolutely without issues and not vulnerable?
At least two critical Windows updates have been released recently Microsoft — but they’re not being picked up by
most patch-management software because the updates aren’t marked Microsoft as “security” updates.
The latest SMB patch means a little bit of not-so-friendly file sharing.
Since my last Patch Watch column, the good news is that we haven’t seen any exploits
or vulnerabilities targeting the Server Message Block (SMB) patch
MS05-011. The bad news is
there have been a few issues that have popped up, one with a resolution, one
still under investigation at this time.