All the latest UK technology news, reviews and analysis


Microsoft delivers Flash fix in Patch Tuesday package

11 Dec 2012
New Microsoft logo

Microsoft has released an update to address 12 vulnerabilities as well as a fix for Adobe Flash Player components in its latest security update.

The company said that the December edition of Patch Tuesday, the last scheduled security release of the year for Microsoft, would include seven total bulletins. Five of the bulletins have been rated as critical, while two are considered to be lowqer level "important" security risks.

Microsoft is advising administrators to prioritise the testing and deployment of two of the most severe bulletins to protect users from attack. The bulletins, which patch flaws in Internet Explorer and Microsoft word, address conditions which, if executed could allow an attacker to remotely execute code on a targeted system without user permission or notification.

Other vulnerabilities patched in the December update include fixes for flaws in Windows and Exchange server. Risks include remote code execution and the ability to bypass Windows security protections.

Microsoft also moved to address possible security flaws in the way Internet Explorer handles the Adobe Flash Player plug-in. The cumulative update will address Flash libraries to patch holes in IE 10 for Windows 8, Windows RT and Windows Server 2012 systems.

Marc Maiffret, chief technology officer with security firm BeyondTrust, pointed out the increasing role Windows RT is playing in the update cycle. In addition to patching Windows PC and Server systems, administrators will need to make sure that Windows RT tablets stay up-to-date with security fixes.

"Don’t forget that when you’re doing your holiday shopping, be sure to consider that the new ARM-based tablets running Windows RT are not immune to vulnerabilities," Maiffret said.

"This month marks the third bulletin being released to patch vulnerabilities in RT, fixing the fourth vulnerability since its release."

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

Windows 10 poll

What are your first impressions of Windows 10?
12%
6%
10%
3%
19%
3%
47%

Popular Threads

Powered by Disqus
V3 Sungard roundtable event - Cloud computing security reliability and scalability discussion

CIOs debate how to overhaul businesses for the digital era

V3 hosts roundtable with Sungard Availability Services

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Junior Software / App Developer - VC Backed Medical Tech Start-Up

Junior Software / App Developer - University Spin Off...

Web Developer - £30k - £37k, Manchester city centre, PHP, MVC, Python

PHP Web Developer - Manchester city centre, £30k - £37k...

IT Systems Administrator - Warrington, £40k - £45k basic, Concept

IT Systems Administrator - Birchwood, Warrington, £40k...
To send to more than one email address, simply separate each address with a comma.