News

Microsoft's September Security Bulletin Will Lack 'Critical' Fixes

This looks to be a lighter patch month, with no "critical" items making it into in September's Microsoft Security Bulletin.

To that end, the five items on this month's slate are all labeled "important."

Windows, Microsoft Office and Microsoft Server and related components are among the programs that will be touched this month. Three of these items are remote code execution considerations and the remaining will relate to elevation-of-privilege risks in the functionality of applicable products and services.

All items may require restarts.

"It's easy for organizations to gain a false sense of security during a light patch month and sometimes an attitude of complacency towards non-critical vulnerabilities is evident" said Marcus Carey, security researcher from Rapid7, speaking on this month's light offering. "But while there are no 'critical' bulletins this month, organizations should not downplay the vulnerabilities being addressed. I know of organizations that have 30-day patch requirements for 'critical' -- which is too long in my opinion -- and up to three months to patch 'important' and below."

About the Author

Jabulani Leffall is an award-winning journalist whose work has appeared in the Financial Times of London, Investor's Business Daily, The Economist and CFO Magazine, among others.

Featured

  • New Office App Coming to Windows 10 Users

    Microsoft is delivering a new Office app for Windows 10 consumer and business users over the new few weeks, according to a Wednesday announcement.

  • Microsoft Warns .NET Core 1.0 and 1.1 Losing Support in June

    Microsoft gave notice this week that .NET Core 1.0 and 1.1 will fall out of support on June 27, 2019.

  • Microsoft Publishes Windows Deadlines on Upgrading to SHA-2

    Microsoft on Friday described its 2019 timeline for when it will start distrusting Secure Hash Algorithm-1 (SHA-1) in supported Windows systems, as well as in the Windows Server Update Services 3.0 Service Pack 2 management product.

  • Performing a Storage Refresh on Windows Server 2016, Part 1

    To spruce up some aging lab hardware, Brien decided to make the jump to all-flash storage. Here's a walk-through of the first half of the process.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.