All the latest UK technology news, reviews and analysis

Microsoft upgrades patch to critical

by Iain Thomson

More from this author

11 Mar 2004

Be the first to comment

  • Tweet this

Microsoft has upgraded one of its patches to 'critical' after discovering new ways in which it could be used by hackers.

The flaw affects the two latest versions of the company's Outlook email client.

Further reading

Microsoft is warning customers to download and install the patch immediately. The patch was previously rated as 'important'.

The company said in a statement: "Based on information regarding a new attack scenario discovered after the bulletin's release Microsoft is increasing the severity rating on MS04-009 from 'important' to 'critical'.

"This rating change is to assist customers in making informed risk assessment."

Anyone using Office XP or Outlook 2002 Service Pack 2 is at risk, but those who have already installed the patch are protected.

The vulnerability allows hackers to remotely execute code on PCs through malware contained in a website.

By sending an HTML email to the target an Outlook mail is automatically opened. This allows code on the website to be automatically downloaded and allows the hacker access privileges to the target computer.

The new attack vectors were pointed out to Microsoft by security consultants iDefense and Finnish security expert Jouko Pynnönen.

Microsoft Security Response Center

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

Concept image of broken USB representing a data leak

Nuclear watchdog loses USB containing data on power plant in Hartlepool

Related white papers

Related articles

Related jobs

Today's top stories

Microsoft Windows 8 start screen

Top 10 Microsoft Windows 8 features to be excited about

Barclays Pingit Application in use on an iPhone

Barclays launches Pingit mobile payment service for iPhone, Android and BlackBerry

V3 reporter Dan Worth

World-changing CERN experiments highlight humanity’s intrinsic curiosity

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 reporter Dan Worth

World-changing CERN experiments highlight humanity’s intrinsic curiosity

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

C++ GUI Developer - Financial Services - London

C++ GUI Developer - Financial Services - London Tech...

Java Web Developer, Greenfield Trading Application

This is an opportunity for a bright and talented Java...

C# Application Developer

C# Application Developer Location : Nottingham...

Senior HTML Developer

Experienced Web Developer Wanted for Financial Sector...

To send to more than one email address, simply separate each address with a comma.