Microsoft warns of a score of security flaws
Microsoft published 10 software security advisories on Tuesday, warning Windows users and corporate administrators of 22 new flaws that affect the company’s products.
The advisories, and patches published with the bulletins, range from an “important” flaw affecting only Microsoft Windows NT Server to a collection of eight security holes, including three rated “critical,” that leave Internet Explorer open to attack. Microsoft’s highest severity rating for software flaws is its “critical” ranking, while “important” is considered slightly less severe. One flaw, in Microsoft Excel, even affects Apple Computer’s Mac OS X.
The abundance of insecurities could leave corporate PCs vulnerable to attacks if administrators are not able to patch quickly. A similar situation occurred in April, when Microsoft published seven advisories detailing 20 flaws. While one security hole stood out among those 20–and led to the widespread Sasser worm–there are no standouts in the current gaggle of goofs.
“Our challenge is trying to guess what the criminals are going to attack,” said Stephen Toulouse, security program manager for Microsoft’s security response team. “The guidance we are giving in general is to treat the critical ones first.” A single computer would not be vulnerable to all the flaws, Toulouse added. Microsoft also rereleased a patch from last month’s graphics vulnerability, fixing a conflict with Windows XP Service Pack 2.
Related posts:
- New Microsoft security flaws found
- Microsoft scoffs at ‘10 new XP SP2 flaws’
- New Flaws Reported In Microsoft IE 6 Browser
- Risk of Windows WMF attacks jumps ’significantly,’ security firm warns
- Microsoft to Fix Critical Windows Flaw
