January '10 Patch Tuesday: 1 Security Bulletin
Each second Tuesday of each month, Redmond-based software giant Microsoft releases patches and fixes for its products, as part of what has become known as the Patch Tuesday program. For the months of November and December 2009, Microsoft released 6 security bulletins that addressed 12 and 15 vulnerabilities respectively. January 2010’s Patch Tuesday is not as impressive as that.
For the month of January, a single security bulleting is included in the Patch Tuesday program. That 1 security bulletin refers to 1 critical vulnerability that affects the Windows operating system. The vulnerability is critical, I’ll give you that, but the OS version it affects is Windows 2000. For all other operating systems the vulnerability is rated as low. Still, you should make sure to get the update and stay safe, even if it is a low security vulnerability.
Perhaps more interesting is the fact that Microsoft will not address the first uncovered Windows 7 vulnerability, a Denial-of-Service (DoS) vulnerability that affects the Server Messaging Block (SMB) Protocol - SMBv1 and SMBv2. This vulnerability was discovered by researcher Laurent Gaffié and according to him, if exploited by a person with malicious intent, it could allow that attacker to remotely crash Windows 7 (and/or Windows Server 2008 R2) on a LAN or via IE.
Jerry Bryant, on behalf of the Microsoft Security Response Center (MSRC), commented: “I want to proactively point out that we will not be addressing Security Advisory 977544 (Vulnerability in SMB Could Allow Denial of Service). We are still working on an update for the issue at this time. We are not aware of any active attacks using the exploit code that was made public for this vulnerability and continue to encourage customers to follow the guidance in the advisory which outlines best practices to help protect systems against attacks that originate outside of the enterprise perimeter.”
Tags: Microsoft, Patch Tuesday, Update
For the month of January, a single security bulleting is included in the Patch Tuesday program. That 1 security bulletin refers to 1 critical vulnerability that affects the Windows operating system. The vulnerability is critical, I’ll give you that, but the OS version it affects is Windows 2000. For all other operating systems the vulnerability is rated as low. Still, you should make sure to get the update and stay safe, even if it is a low security vulnerability.
Advertising
Perhaps more interesting is the fact that Microsoft will not address the first uncovered Windows 7 vulnerability, a Denial-of-Service (DoS) vulnerability that affects the Server Messaging Block (SMB) Protocol - SMBv1 and SMBv2. This vulnerability was discovered by researcher Laurent Gaffié and according to him, if exploited by a person with malicious intent, it could allow that attacker to remotely crash Windows 7 (and/or Windows Server 2008 R2) on a LAN or via IE.
Jerry Bryant, on behalf of the Microsoft Security Response Center (MSRC), commented: “I want to proactively point out that we will not be addressing Security Advisory 977544 (Vulnerability in SMB Could Allow Denial of Service). We are still working on an update for the issue at this time. We are not aware of any active attacks using the exploit code that was made public for this vulnerability and continue to encourage customers to follow the guidance in the advisory which outlines best practices to help protect systems against attacks that originate outside of the enterprise perimeter.”
Tags: Microsoft, Patch Tuesday, Update
I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 10 Feb 2012
With the release of Wolfram|Alpha Pro, the team behind the popular computational knowledge engine took a very big step forward
By George Norman on 10 Feb 2012
Microsoft has just announced that this February, as part of the Patch Tuesday program, it will roll out a grand total of 9 security bulletins to all customers all over the world.Related News
By George Norman on 10 Feb 2012
Microsoft has just announced that this February, as part of the Patch Tuesday program, it will roll out a grand total of 9 security bulletins to all customers all over the world.
By George Norman on 06 Jan 2012
On the 10th of January 2012, Microsoft will release seven security bulletins as part of its Patch Tuesday program. The aforementioned bulletins are meant to address a total of 8 vulnerabilities that plague the Microsoft Windows operating system and
By George Norman on 13 Dec 2011
Tuesday, the 13th of December, is December 2011 Patch Tuesday, the last Patch Tuesday of the year. This December Microsoft will release a total of 14 security bulletins to its customers.
By George Norman on 11 Oct 2011
Today, October 11th, is the second Tuesday of the month, which means that Microsoft will roll out patches for its products as part of the Patch Tuesday programAdvertising
Hot Software Updates
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
January '10 Patch Tuesday: 1 Security Bulletin
HTML Linking Code
HTML Linking Code