PCR Tech and IT retail, distribution and vendor news
Microsoft has announced details of the upcoming "patch tuesday" monthly security update scheduled for the 14th of September.
Nine updates are planned while four of those are catagorised as "critical" by the Microsoft security team. Updates labelled "critical" are those which potentially allow attackers to remotely execute code and take over computer systems.
The number of patches is relatively large for the "odd month" sequence where a lower number of security matters are traditionally addressed with the updates. It’s not yet known if some of the patches address issues to do with the DLL vulnerability recently uncovered, in itself not a flaw with Windows but a vector which can be exploited against poorly written software.
Microsoft said they couldn’t alter Windows behavior regarding dynamically loading DLLs without breaking older software but it has made some tools available for enterprise clients to alter behavior if that’s a risk they’re willing to take in exchange for boosted security.
Office also gets the patch treatment on Tuesday with two remote execution vulnerabilities patched for Office XP, 2003 and 2007, one of which is listed as "critical". Microsoft will also be releasing an update to the Malicious Software Removal Tool.
To subscribe to our Twitter feed, head over to @PCR_online.
