The latest batch of Microsoft software patches are the second largest in number issued this year and have “headache written all over it,” according to security specialist PatchLink.
While it’s not the largest number of patches issues this year, the nine software updates are a “headache” and will affect anyone using Windows, with the details of the patches indicating a broad-spectrum of exposure, says PatchLink ANZ Director, Chris Wood.
The security updates fix a total of 14 vulnerabilities in Windows, Windows Media Player, Office, Excel, Internet Explorer, Windows Gadgets, Visual basic, Virtual Server and Virtual Pc. Eight of the vulnerabilities are listed as critical.
According to security software company Symantec, the Cumulative Security Update for Internet Explorer is the most critical since “two of the vulnerabilities affect Internet Explorer 6 and 7 on Windows 2000, XP, Server 2003, and Windows Vista. A successful exploit could allow an attacker to install malicious code of his/her choice in the context of the currently logged in user. Consumers and enterprise users are susceptible to exploits if they visit a malicious Web page.”
Symantec advises consumers to regularly run Windows Update and install the latest security patches to keep software up to date and avoid opening unknown or unexpected e-mail attachments or following Web links from unknown or unverified sources.