Microsoft's July Patch Tuesday 'Ugly', Expert Says
Microsoft's July Patch Tuesday 'Ugly', Expert Says
Submitted by Dennis Faas on Mon, 07/08/2013 - 08:00
Another Patch Tuesday, another 'critical' update for Internet Explorer. This month's Patch Tuesday provides fixes for a total of seven security issues, the most important of which involves Microsoft's popular web browser.
Microsoft says its Patch Tuesday fixes affect most versions of the Windows operating system, the .NET Framework, Silverlight, the Office software suite, Visual Studio, and Internet Explorer (IE).
Each of these security bulletins is marked 'critical,' which is Microsoft's highest security rating.
A seventh bulletin has been marked 'important' and is associated with Microsoft's Windows Defender, the free security software (also known as Security Essentials) that now ships with the Windows 8 operating system.
'Critical' Fix Addresses IE Zero-Day Flaw
However, the most crucial security bulletin affects a problem with Internet Explorer.
According to Wolfgang Kandek, a security expert at Qualys, the critical fix issued by Microsoft addresses an Internet Explorer zero-day security flaw found in Windows XP, Windows Vista, Windows 7, Windows 8, Windows RT, and Windows Server 2003 and 2008.
The vulnerability, which has been given the technical title CVE-2013-3660, has been referred to as "a publicly known issue in the kernel-mode drivers component of Windows." (Source: pcworld.com)
July Patch Tuesday 'Ugly,' Security Expert Says
Overall, this Patch Tuesday features an average number of security bulletins. However, because so many of those bulletins are marked 'critical,' many security experts are alarmed.
"This is one of the uglier releases we've seen from Microsoft this year," said Lumension security analyst, Paul Henry.
"To say that all Microsoft products are affected and everything is affected critically is not an understatement. It's difficult to prioritize one or two because all the bulletins are significant this Patch Tuesday."
According to Rapid7 security engineering senior manager Ross Barrett, that means it's "going to be a busy month for security teams everywhere." (Source: theregister.co.uk)
This month's Patch Tuesday now brings the total number of 'critical' updates released in 2013 to 22.
Microsoft plans to release the security updates on July 9 at 10am Pacific Time.
Rate this article:
Need Help? Ask!
My name is Dennis Faas and I am a senior systems administrator and IT technical analyst specializing in cyber crimes (sextortion / blackmail / tech support scams) with over 30 years experience; I also run this website! If you need technical assistance , I can help. Click here to email me now; optionally, you can review my resume here. You can also read how I can fix your computer over the Internet (also includes user reviews).
My name is Dennis Faas and I am a senior systems administrator and IT technical analyst specializing in cyber crimes (sextortion / blackmail / tech support scams) with over 30 years experience; I also run this website! If you need technical assistance , I can help. Click here to email me now; optionally, you can review my resume here. You can also read how I can fix your computer over the Internet (also includes user reviews).
We are BBB Accredited
We are BBB accredited (A+ rating), celebrating 21 years of excellence! Click to view our rating on the BBB.