On TV.com: TOP 10 Shows CANCELED Too Soon
BNET Business Network:
BNET
TechRepublic
ZDNet
120 TalkBacks

By Joris Evers
Posted on ZDNet News: Apr 6, 2006 7:14:00 PM

As part of its monthly patching cycle, Microsoft plans on Tuesday to release five security bulletins with fixes for flaws in Windows and Office.

At least one of the alerts is deemed "critical," Microsoft's highest risk rating, the software maker said in a notice posted on its Web site on Thursday. It tags as critical any security threat that could allow a malicious Internet worm to spread without any action required on the part of the user.

One of Tuesday's bulletins will be for its Internet Explorer Web browser. It will include a comprehensive update with multiple fixes, including one for the publicly known "CreateTextRange" vulnerability, Microsoft said. It did not specify what other issues its additional Tuesday patches will repair, or how many flaws will be tackled.

Security researchers have noted several unpatched flaws in IE. The CreateTextRange bug is considered most critical by experts. The flaw is being exploited by malicious Web sites to install spyware, remote-control software and Trojan horses on vulnerable PCs, experts have said. Third parties have provided temporary fixes.

As part of its monthly patch day, Microsoft also plans to release an updated version of the Windows Malicious Software Removal Tool. The software detects and removes common malicious code placed on computers.

Additionally, this month's patches will make a change to the way IE handles Web programs called ActiveX controls. These tweaks are related to a long-running patent dispute between Microsoft and a startup backed by the University of California. The changes can affect how certain sites display in the browser.

People who need more time to adjust to the ActiveX changes can download a special patch that will disable them for two months. This "compatibility patch" is specifically designed for businesses that may have homegrown applications that use ActiveX, Microsoft has said.

Microsoft gave no further information on the upcoming bulletins, other than stating that some the Windows fixes will require restarting the computer. The Office fix may also require a restart, it added.

The Redmond, Wash., software maker offers advance notification about patches so people can get ready to install the updates.

Last month, Microsoft released two security bulletins covering six flaws in Office, most of which were related to Excel, and one flaw in Windows. The Office bulletin was tagged critical, while Microsoft deemed the Windows problem "important," one notch lower on its four-tiered rating scale.

Microsoft said it will host a Webcast about the new fixes on Wednesday at 11 a.m. PDT.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 120 Talkback(s)
More patches I don't need stinking patches
Boy IE must have more holes then a woodpeckers' treehouse.This seems to be the end of IE problems oh sorry april fools was last week.Come on just one more patch before we give up EI six,that will make what 100.... (Read the rest)
Posted by: LBSmusica2 Posted on: 04/11/06 You are currently: a Guest | | Terms of Use
Microsoft to slap patch on risky IE hole  Loverock Davidson | 04/06/06
Nice track record.  Mr. Roboto | 04/06/06
Couldn't be more wrong  Loverock Davidson | 04/06/06
couldn't be more right  Scott W | 04/06/06
"per customer request"?  Tony Agudo | 04/06/06
900 patches?!?!  corticus | 04/06/06
The key word here is they were FIXED fast  BUCKWHEATONRICE | 04/06/06
well geez, with 900 bugs  corticus | 04/06/06
windows is bug free?  Scott W | 04/06/06
These bugs were sought out and fixed before they could be exploited.  Zogg | 04/06/06
but who is there out there  xuniL_z | 04/07/06
Xunil  nomorems | 04/07/06
A reply to xuniL  Free_Thinker | 04/08/06
Note to Free_thinker  xuniL_z | 04/09/06
Ooops, Your ignorance is showing.  Hrothgar - PCLinuxOS User | 04/09/06
Yes  zkiwi | 04/06/06
Yes  Arm A. Geddon | 04/06/06
Yeah the other thing he neglects to mention..  ju1ce | 04/07/06
someone didn't read the whole story  pcgenie | 04/07/06
That's not what was said  Free_Thinker | 04/08/06
9 / 10  Expatriate US Geek | 04/06/06
A 10 for what? (NT)  Loverock Davidson | 04/06/06
9.2  Sxooter_z | 04/07/06
1/10  PinkFloyd* | 04/07/06
Your point being????  ZaphodBreebleBrox | 04/06/06
My point is  Loverock Davidson | 04/06/06
and you're right  Scott W | 04/06/06
Nice reply to Loverock davidson and did you notice...........  Can you hear me | 04/06/06
I think Lover is part of Microsoft's PR Dept.  I am Gorby | 04/06/06
Not quite  DangDaCommonCentz | 04/07/06
how would you know he was on?  xuniL_z | 04/07/06
Dude...you're pathetic  jshaw4343 | 04/07/06
If what you say is true,...  Tony Agudo | 04/07/06
sorry, but using your post...hey raftermann  xuniL_z | 04/07/06
I wouldn't say that...  Tony Agudo | 04/07/06
my thoughts would be why do you bother  xuniL_z | 04/07/06
Xunil...  Tony Agudo | 04/08/06
linux!  Scott W | 04/06/06
catchy?  Arm A. Geddon | 04/06/06
Doing my Linux drive today, tomorrow is XP  Cayble | 04/06/06
Too bad they can't fix holes as fast as the open source community  BUCKWHEATONRICE | 04/06/06
'Stone Banger Harley' (nt)  s_gamgee | 04/07/06
I'll tell you the main reason for that....  xuniL_z | 04/07/06
Microsoft to slap patch on risky IE hole  plumnilly | 04/07/06
like i said..  xuniL_z | 04/07/06
Very crafty login name ?  I'm Ye, the MS SHILL . | 04/07/06
that is such a strong word.  xuniL_z | 04/07/06
Goodness gracious Xunil...  nomorems | 04/07/06
If I had a nickel for everytime you said....  xuniL_z | 04/07/06
Hmmm...  Hrothgar - PCLinuxOS User | 04/09/06
3 words...  Monkey_MCSE | 04/07/06
dude  xuniL_z | 04/07/06
Again with the job and pay references.  nomorems | 04/07/06
actually it didn't bother me  Monkey_MCSE | 04/07/06
what pay reference??  xuniL_z | 04/07/06
Rebuttal  Free_Thinker | 04/08/06
Taxonomy  handydan918 | 04/06/06
Been patched for days now...  jasonp@... | 04/06/06
Message has been deleted.  I'm Ye, the MS SHILL . | 04/07/06
Message has been deleted.  nomorems | 04/07/06
Message has been deleted.  nomorems | 04/07/06
Message has been deleted.  nomorems | 04/07/06
Message has been deleted.  nomorems | 04/07/06
Message has been deleted.  nomorems | 04/07/06
ObeyMeIAmRoot, behave yourself man!  Tony Agudo | 04/07/06
Yeah , pretty much .  I'm Ye, the MS SHILL . | 04/07/06
Very crafty statement...very crafty.  xuniL_z | 04/07/06
GASP!  Shelendrea | 04/06/06
New M$ Patch  mesmd | 04/06/06
MS is a national security risk  Snippy Clippit | 04/06/06
hmm...  phburks | 04/06/06
How would you rate the probability...  Snippy Clippit | 04/08/06
national security risks  Colonel Panijk | 04/06/06
OK, but which software...  Snippy Clippit | 04/08/06
Mister you should work for the NSA!  s_gamgee | 04/07/06
You are kidding, right?  PinkFloyd* | 04/07/06
Not sure what code you have in mind...  Snippy Clippit | 04/08/06
Microsoft.... safe??????  BandwidthBandit | 04/08/06
Best patch ever...  A_Pickle | 04/06/06
Well.....  tslocum7 | 04/09/06
MS preparing a patch for a critical problem is NOT news.  michael_t | 04/06/06
Give it a rest!!!  richdave | 04/06/06
The Titanic was a great ship too...  realitycheck101 | 04/07/06
i own a hammer...  inertman@... | 04/07/06
Poor logic...  gfeier | 04/07/06
poor logic?  PinkFloyd* | 04/07/06
Truth in Advertising  BandwidthBandit | 04/08/06
there are too many laws  xuniL_z | 04/08/06
"when you can attack machines that number in the billions, windows"  nomorems | 04/07/06
You obviously  xuniL_z | 04/07/06
umhmmm.  nomorems | 04/07/06
ok no more ms  xuniL_z | 04/07/06
It's the operating system stupid  njic@... | 04/07/06
Internet Explorer  jmsbootlegger@... | 04/07/06
The MS patch schedule  s_gamgee | 04/07/06
False sense of security  Chad_z | 04/07/06
YOU can remove IE  jackie40d@... | 04/07/06
Maybe not OS either...  BandwidthBandit | 04/08/06
No you can't  Free_Thinker | 04/08/06
Alternative....  tslocum7 | 04/09/06
Raise your hand if....  zappattazz@... | 04/07/06
In the words of Horschach of ...  Judas I. | 04/07/06
The kid will....  zappattazz@... | 04/07/06
What? You don't think I've seen ...  Judas I. | 04/07/06
But then you did have to go all the way ...  ShadeTree | 04/10/06
Raise your hand - lose your job  BandwidthBandit | 04/08/06
Does the "Melissa" virus count?  BandwidthBandit | 04/08/06
Is this a multiple choice?  xuniL_z | 04/07/06
If it's critical, why wait for a 'Patch Tuesday' ???  Rick S._z | 04/07/06
I wonder if there are any courses  xuniL_z | 04/08/06
"Courses in common sense?"  brian ansorge | 04/08/06
Linux runs on more configs  Free_Thinker | 04/08/06
Who Said It Already?  TerryGeorge | 04/08/06
MS Patches  vger_z | 04/08/06
Actually...  Free_Thinker | 04/08/06
Well....  tslocum7 | 04/09/06
Microsoft packs in features and ships out fast - security an afterthought  BandwidthBandit | 04/08/06
Not just security problems.  tslocum7 | 04/09/06
Attacks are coming from organized crime.  BandwidthBandit | 04/08/06
More patches I don't need stinking patches  LBSmusica2 | 04/11/06

What do you think?

advertisement
advertisement

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here