[ISN] Microsoft to Fix Windows, Office Bugs in Critical Updates

From: InfoSec News <alerts_at_private>
Date: Fri, 7 Aug 2009 03:25:33 -0500 (CDT)

By Brian Prince

Microsoft is releasing nine security bulletins for Patch Tuesday on Aug.
11. Among them is a patch for a vulnerability Microsoft warned in July 
    was being exploited by attackers.

Microsoft has nine security bulletins planned for the Aug. 11 Patch 
Tuesday release, including one addressing a critical vulnerability 
Microsoft warned was under attack.

Tucked in among the five critical bulletins Microsoft will release is a 
patch for a vulnerability in Microsoft Office Web Components the company 
said in July could be exploited to take control of a vulnerable system. 
The bug lies in the Spreadsheet ActiveX control. According to Microsoft, 
when the ActiveX control is used in Internet Explorer, the control can 
corrupt the system state and allow an attacker to run arbitrary code.

The bulletin covering that issue affects Microsoft Office, Microsoft 
Visual Studio, ISA Server and BizTalk Server. The other four critical 
bulletins are focused on Microsoft Windows, with one additionally 
affecting Windows Client for Mac.


Subscribe to InfoSec News
Received on Fri Aug 07 2009 - 01:25:33 PDT

This archive was generated by hypermail 2.2.0 : Fri Aug 07 2009 - 01:31:55 PDT