Security Advisor

4 'Critical' Bulletins Set for Microsoft's September Patch

Microsoft announced today that its September Security Update will include 14 bulletin items -- four rated "critical" and 10 "important."

With eight fixing remote code execution flaws, three elevation of privilege fixes, two denial of service bulletins and an information disclosure fix, next Tuesday looks to be a busy one for IT.

When prepping your own battle plan for the patch release, a pair of  bulletins should be the first action taken, depending on your IT expertise,  according to Wolfgang Kandek, CTO of security firm Qualys, Inc.

"Bulletin #2 should be high priority for your desktop security team; it addresses a flaw in Microsoft Office that can be triggered simply by previewing an e-mail in Outlook, even without explicitly opening the e-mail. Outlook in Office 2007 and 2010 is affected," said Kandek in an e-mailed response.

As for IT server teams, Kandek said they should focus on the first bulletin as soon as possible, as it concerns SharePoint Servers.

The remaining two critical items include a fix for Internet Explorer (versions 6 through 10) and a flaw correction in Windows XP and Windows Server 2003. With only seven more patch cycles left before XP loses support and 22 cycles left before Windows Server 2003's end of support, look for Microsoft to regularly feature fixes for both in the coming months.

Look for our in-depth look at this month's Microsoft Security Update to arrive with the patch release on Tuesday.

About the Author

Chris Paoli is the site producer for Redmondmag.com and MCPmag.com.

Featured

  • Microsoft Warns IT Pros on Windows Netlogon Fix Coming Next Month

    Microsoft on Thursday issued a reminder to organizations to ensure that their systems are properly patched for a "Critical"-rated Windows Netlogon vulnerability before next month's "update Tuesday" patch distribution arrives.

  • Microsoft Nudging Skype for Business Users to Teams

    Microsoft on Thursday announced some perks and prods for Skype for Business unified communications users, with the aim of moving them to the Microsoft Teams collaboration service instead.

  • How To Improve Windows 10's Sound and Video Quality

    Windows 10 comes with built-in tools that can help users get the most out of their sound and video hardware.

  • Microsoft Offers More 'Solorigate' Advice Using Microsoft 365 Defender Tools

    Microsoft issued yet another article with advice on how to use its Microsoft 365 Defender suite of tools to protect against "Solorigate" advanced persistent threat types of attacks in a Thursday announcement.

comments powered by Disqus