[ISN] Microsoft Releases Patch Tuesday Fixes with New Exploitability Index

From: InfoSec News <alerts_at_private>
Date: Wed, 15 Oct 2008 00:22:51 -0500 (CDT)

By Brian Prince

Microsoft pushes out 11 security bulletins as part of October's Patch 
Tuesday. Microsoft also unveils its Exploitability Index, which includes 
information about vulnerabilities that are likely to be exploited. Four 
of the 11 bulletin cover security issues are rated critical.

Microsoft released 11 security bulletins for Patch Tuesday Oct. 14 as 
well as a new measuring stick to judge them by.

The "Exploitability Index" appears as a new table on the monthly 
Microsoft Security Bulletin Summary. Next to each bulletin is an 
additional rating based on how likely it is that the vulnerability will 
be exploited. An additional column is for notes with extra information.

"Exploitability Index is way to provide more information to aid 
customers in their risk management process," wrote Steve Adegbite on the 
MSRC (Microsoft Security Response Center) blog.

Of the 11 bulletins, four are rated "critical." The critical bulletins 
cover remote code execution issues in Internet Explorer, Active 
Directory, Host Integration Server's Remote Procedure Call Service and 
Office Excel.


Register now for HITBSecConf2008 - Malaysia! With 
a new triple-track conference featuring 4 keynote 
speakers and over 35 international experts, this 
is the largest network security event in Asia and 
the Middle East! 
Received on Tue Oct 14 2008 - 22:22:51 PDT

This archive was generated by hypermail 2.2.0 : Tue Oct 14 2008 - 22:26:58 PDT