blob: 632862483a3c67679b4618097476fde037c78623 (
plain)
1
2
3
4
5
6
7
8
9
10
|
Microsoft has official released their May security bulletin with fixes for some serious flaws including a zero-day flaw in Windows that is already being exploited in the wild.
The zero-day flaw stems from a vulnerability in the Windows DNS system which affects Windows 2000 Server and Windows Server 2003. The patches are now available through the [Microsoft Security Advisory][2] site.
As we [mentioned last week][1], other bulletins address flaws in Windows, Office, Exchange and BizTalk, all four of which contain at least one patch rated as critical, meaning that an attacker can execute remote code to hijack a user's system.
The updates are recommended for all users.
[2]: http://www.microsoft.com/technet/security/bulletin/ms07-may.mspx "Microsoft Security Bulletin Summary for May 2007"
[1]: http://blog.wired.com/monkeybites/2007/05/microsoft_addre.html "Microsoft Addresses Critical Flaws"
|
