Microsoft has released its monthly security update with protection for security flaws in Windows, Internet Explorer and Office.
The company said that the June Patch
Tuesday release will include one bulletin rated by the company as
critical as well as four bulletins that were given lower 'important'
security ratings.
The critical flaw addresses a collection
of 18 security flaws in various versions of Internet Explorer. If
targeted, the flaws could be exploited by an attacker to remotely
execute code on a targeted system. Microsoft has listed the fix as the
top priority for users and administrators.
Also released in the June bulletin is a
fix for a remote code execution flaw in Office and Office for Mac. The
company said that it has been receiving reports of attacks in the wild
actively targeting the flaw, though because a user has to manually open
the file or preview it in an email to launch the attack, the flaw is not
being considered to be a critical risk.
The remaining three bulletins address
errors in the Windows kernel, kernel-mode and print spooler components.
Possible risks from the flaws include denial-of-service errors and
possible elevation of privilege attacks.
Microsoft is also releasing an update to
help expand encryption protections for Windows system. The company said
it would be expanding encryption features from Windows 8 to systems
running Windows Vista and Windows 7. It hopes that the update will allow
administrators to better manage and utilise encryption keys through the
Certificate Trust List platform.
No comments:
Post a Comment