Microsoft June update goes live, fixes four critical flaws
Redmond (WA) - Microsoft has posted its latest security bulletin, offering patches for six vulnerabilities, four of which are labeled critical.
The four critical vulnerabilities all deal with remote code execution. Almost all of them deal with a vulnerability in Internet Explorer that a hacker could exploit to gain access to an infected remote PC.
Another flaw deals with Microsoft’s e-mail applications, Outlook Express and Windows Mail. Vista users running Windows Mail, and anyone with Outlook Express could be infected through a specific bug that originates if the user visits a certain website.
The final critical vulnerability, which deals with Win32 API, can only impact users if an attack is launched locally. This could elevate user privileges as well as allow remote code execution.
In addition, there’s a patch labeled "important" that would infect users who open a malicious Microsoft Visio file, which would allow the attacker to gain remote access, as well as another local vulnerability that would allow normal users to access administrative passwords and other registry files.
The update is available now through Windows Update and through Microsoft’s security website.
The four critical vulnerabilities all deal with remote code execution. Almost all of them deal with a vulnerability in Internet Explorer that a hacker could exploit to gain access to an infected remote PC.
Another flaw deals with Microsoft’s e-mail applications, Outlook Express and Windows Mail. Vista users running Windows Mail, and anyone with Outlook Express could be infected through a specific bug that originates if the user visits a certain website.
The final critical vulnerability, which deals with Win32 API, can only impact users if an attack is launched locally. This could elevate user privileges as well as allow remote code execution.
In addition, there’s a patch labeled "important" that would infect users who open a malicious Microsoft Visio file, which would allow the attacker to gain remote access, as well as another local vulnerability that would allow normal users to access administrative passwords and other registry files.
The update is available now through Windows Update and through Microsoft’s security website.
Nokia files patent counter suit against Qualcomm
- Toshiba develops new 3D NAND flash technology
- Qualcomm files for emergency stay on ITC ban
- Motion Computing adds HSDPA capability LE1700 tablet PCs
- UMC and TI collaborating on 45 nm and 32 nm processes
- Wikipedia listing of "Sopranos" creator vandalized
- No more iPhone pre-sales on Ebay
- Privacy group demands apology from GooglePrivacy group demands apology from Google
- Playstation 3 accounts for almost 90% of XDR memory shipments
- Apple in talks to launch film rental service: report
Intel to adjust proportions of 3 series and entry-level chipsets
- Man pleads guilty to week-long spamming spree
- EA to revamp Mac games library
- Yahoo shareholders protest CEO's $107 million pay
- Intel aims to take the pain out of programming future multi-core processors
- IBM patents external DRAM box
- Game Review: Big Brain Academy doesn't make the grade on Wii
- More than one billion PCs in use by end of next year: report
- Safari 3.0 beta hit with six vulnerabilities within hours after launch
- Intel retires all but one entry-level Netburst processors
Sponsored
See more
Latest news
Miscellaneous Previous news
Partners
