MS readies Vista code injection risk fix | The Register

Skip to content

Security:

News Tools

Reg Shops

Top Stories

Read more top stories

Related Whitepapers

Gartner Paper: US Data Centers - The Calm Before the Storm
How to handle future energy demands
Solution Brief: Reduce Energy Costs
With Green IT Solutions
The Perfect (Virtual) Marriage
Deduplication and VMware
Enabling the Data Center Metamorphosis
From Fixed To Fluid
Server Consolidation and Containment
With Virtual Infrastructure
Making Green IT a Reality
Customer Perspectives on the Impact of Storage Vendor Decisions on Power, Cooling, & Space in Enterprise Data Centers

The Register » Security » Enterprise Security »

MS readies Vista code injection risk fix

Redmond security gnomes get tough

By John Leyden → More by this author

Published Friday 4th July 2008 09:52 GMT

How IT Management Can "Green" the Data Center - Free Download

Critical bug fixes are on the agenda for this month's monthly patch update from Microsoft.

The four "important" fixes due out next Tuesday (8 July) for Microsoft SQL Server and Exchange as well as a brace of fixes for Windows. One of the Windows fixes affects Vista and poses a "remote code execution" risk, something that would normally merit a critical tag.

Microsoft will need to come up with a really convincing rationale on why the bug is hard to exploit, to avoid accusations that it's fudging the classification of the vulnerability to avoid negative press.

Windows XP, Microsoft's earlier (supposedly less secure) operating system, is not affected by that Windows bug, but it is affected by a flaw that poses a spoofing risk. Windows Server 2003 and Windows 2000 also need patching against the second flaw, which doesn't affect Vista.

As well as the patches Microsoft also plans to publish an update for its Malicious Software Removal Tool.

More details on the upcoming patches can be found in Microsoft's pre-alert here. ®

Free Analyst Paper: Overcoming Energy Demands on US Data Centers

2 comments posted — Comment period finished

"an update for its Malicious Software Removal Tool."

Posted: 02:31 6th July 2008

<wakes with a snort>

Posted: 07:41 7th July 2008

Track this type of story as a custom Atom/RSS feed or by email.

Related stories

Microsoft slams 'sensationalist' Vista analysis (28 July 2008)
Microsoft kicks Ubuntu update in the hardy herons (12 July 2008)
Microsoft tells SMBs Vista isn't a risky business (9 July 2008)
MS DNS patch snuffs net connection for ZoneAlarm users (9 July 2008)
Microsoft pledges to fight Vista 'myths' (8 July 2008)
MS issues eleventh hour Snapshot bug workaround (8 July 2008)
Deployment bug mars Patch Tuesday (17 June 2008)
Get 'em while they're hot: critical security fixes from Microsoft, Apple (10 June 2008)
eBay pulls Vista laptop pwned in hacking contest (2 April 2008)
Microsoft plugs 'critical' hole in Vista (8 January 2008)
Fight malware by upgrading to Vista, urges MS (23 October 2007)

Post to Slashdot

Add to del.icio.us

Previous Article

From small embedded OS to the world's most used open mobile OS

whitepaper title

Server Consolidation and Containment

This paper discusses how consolidation and containment solutions with a virtual infrastructure meet the challenges of server sprawl and underutilization..

whitepaper title

Making Green IT a Reality

Customer Perspectives on the Impact of Storage Vendor Decisions on Power, Cooling, & Space in Enterprise Data Centers.

Whitepapers	Jobs
Mobile Computing : Opportunities and Risk Java and J2EE performance Strategies for Deploying Blade Servers in Existing Data Centers [WP125] The Near Horizon Of Mobility	Web Application Engineer Internal Systems Developer Perl Programmer Sr. Software Developer - Front End Developer (Domain Services) Object Oriented Perl Developer

How IT Management Can "Green" the Data Center

A Gartner Report

Download for free NOW

Top 20 stories • All The Week’s Headlines • Archive • Search