Microsoft Unleashes Host of 'Critical' Updates

Microsoft recently released another whack of updates to its software, and many will want to take notice. Of the ten listed vulnerabilities within this June offering are three deemed "critical", another three considered "important" and one "moderate".

The patch released Tuesday includes three major fixes, including:

• A vulnerability in Bluetooth Stack that could allow a hacker to make a remote code execution
   
• A Cumulative Security Update for Internet Explorer
   
• Like the Bluetooth issue, there's also a fix that patches holes in DirectX which could allow someone to make a remote code execution

A major upgrade to Internet Explorer's armor and two updates that could mean the difference between a devastating crack or hacker frustration? No wonder Microsoft marked these three 'critical'.

These issues have also been declared problems for a host of different Windows operating systems. The last two, the Internet Explorer security update and DirectX problem, affect each version of Windows, including Windows 2000, XP, Vista, and even Windows Server 2003 and 2008. The Bluetooth error is limited to Windows XP and Vista, but most users run these two operating systems anyhow. (Source: enews20.com)

The Internet Explorer Cumulative Security Update may be the most important. Not only does it fix a remote code execution (like the Bluetooth and DirectX issues) but also prevents the disclosure of information via a specially crafted web page -- we're assuming this is in relation to an elaborate phishing scam Microsoft has detected. (Source: themoneytimes.com)

In order for the DirectX hole to become a problem, users would have to open a specially crafted media file that could potentially lead to a remote code execution. The Bluetooth problem is similar.

These recent June releases bring Microsoft's security update total for 2008 up to 36.