All the latest UK technology news, reviews and analysis


Microsoft forced to ready critical Windows 8 patch

09 Nov 2012
Microsoft logo

Microsoft said that it will deliver six security bulletins, four of which address critical flaws for systems including the newly-released Windows 8, in next week's scheduled security update.

The company said that the November edition of Patch Tuesday will include fixes for vulnerabilities in Windows, Internet Explorer, Office and the .NET framework.

According to Microsoft's advance notification posting, all supported versions of Windows, ranging from Windows XP to Windows 8, will be subject to critical fixes, as will all supported versions of Windows Server and Internet Explorer 9.

While Microsoft does not provide details on vulnerabilities prior to the release of a patch, the company said that all four of the critical patches will address remote code execution vulnerabilities.

Additionally, the company is planning to release a bulletin to patch a remote code execution flaw in the Office which has been categorised as an 'important' risk level and a patch for an information disclosure vulnerability in Windows classified as 'moderate.'

Microsoft noted that the Office patch would also be distributed to Mac users running the OS X version of the productivity suite.

Paul Henry, a security and forensic analyst with Lumension, said that the number of fixes for serious flaws in Microsoft's latest products was particularly worrisome given Microsoft's commitment to a secure development process.

"Right off the top, it’s disappointing to see the critical bulletins impacting more than just legacy code as we’ve come to expect in recent months. These bulletins impact many current generation products and that’s concerning," Henry explained.

"Nothing is ever 100 percent secure and albeit mistakes are made in software. But it’s still ugly to see."

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

IT curriculum poll

With coding now compulsory in schools, how important are digital skills for the next generation of school leavers?
61%
9%
21%
9%

Popular Threads

Powered by Disqus
V3 Security Summit

V3 Security Summit Day 1: Advanced threat, IoT and phishing guidance incoming

Register and stay tuned for the latest cyber security news, analysis and guidance

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Oracle Hyperion Consultant

Hyperion, HFM, Financial Management, Financial Data Management...

Salesforce Developer

Job Requirements: - Salesforce.com Architecture and...

Network Engineer

Network Engineer Lincoln, Lincolnshire, East Midlands...

Multiple Oracle HR/Payroll Consultants - London/M4/Thames Valley

Oracle HR/Payroll Consultants – London/M4/Thames Valley...
To send to more than one email address, simply separate each address with a comma.