All the latest UK technology news, reviews and analysis


Microsoft readies two critical fixes for April update

05 Apr 2013
New Microsoft logo

Microsoft said that it will be releasing critical fixes for Windows and Internet Explorer in its April security update.

The company said that the next edition of 'Patch Tuesday,' set to be released 9 April at approximately 1800 GMT, would only contain a pair of bulletins rated with its highest security alert level.

The first critical bulletins will address flaws deemed critical in Internet Explorer for Windows XP, Vista, Windows 7 and Windows 8. Those vulnerabilities are only considered 'moderate' risks in Windows Server systems.

The second critical bulletin will be likewise considered a 'critical' flaw for all supported desktop versions of Windows prior to Windows 8 and 'moderate' for Windows Server deployments. The vulnerability is not present in Windows 8 systems.

Microsoft said that, if targeted, the vulnerabilities addressed by the bulletins could allow an attacker to remotely execute code on a targeted system.

In addition to the critical fixes, Microsoft said that it would be releasing a total of seven flaws rated as 'important' security risks. The impact of those vulnerabilities includes elevation of privilege, denial of service and information disclosure.

Security vendors said that while the April release is low on critical updates, the glut of lower-priority fixes could still prevent problems for administrators.

"While only two of the announced patches are actually critical, as a security professional, I find the sheer volume of patches this month to be noteworthy," Core security senior product manager Alex Horan.

"Large numbers of updates lead to more administration and ultimately delays. This can allow critical vulnerabilities to be exploited while less significant concerns simply cloud the security picture."

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

Windows 7 end of mainstream support

What are your plans for when Microsoft ends mainstream support for Windows 7 in January 2015?
9%
7%
0%
73%
11%

Popular Threads

Powered by Disqus
LG G3 in gold black and white

LG G3 vs Galaxy S5 video

We pit the two Korean firms' flagship smartphones against each other

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

C# / .Net Developers

C# / .Net Developers - London - CONTRACT - £Excellent...

Software Tester- Automation, Selenium IDE, WebDriver, .Net, SQL

Software Tester - Automation, Selenium IDE, WebDriver...

Sales Lead Central Europe - Wireless Test & Measurement

New opportunity - Mobility/Wireless Account Manager for...

Assessor / Auditor (ISO 9000 IT, Telecoms / Electro technical)

Assessor / Auditor (ISO 9000 IT, Telecoms / Electro technical...
To send to more than one email address, simply separate each address with a comma.