Microsoft is advising users and
administrators to prepare for a July Patch Tuesday release which will
include a half-dozen critical security fixes.
The company said that the monthly release
would include six patches rated as 'critical,' the most severe of its
security levels often designated for high-priority deployments. The
critical fixes will affect all supported versions of Windows ranging
form XP to Windows 8 and Windows RT as well as supported versions of
Windows Server.
All six of the critical flaws will
address remote code execution vulnerabilities while a seventh patch,
rated as 'important' will fix an elevation of privilege flaw in the
Microsoft Security Software package.
Often targeted by attackers to perform
drive-by malware download attacks, remote code execution flaws allow an
attacker to crash an application and launch malware payloads often
without any sort of notification or interaction form the user. Such
flaws are widely regarded and the most dangerous for end users and are
often singled out as top priorities for deployments.
Among the six critical fixes Microsoft is
planning for the July release are updates to remote code execution
flaws in the .Net Framework and Silverlight. Other platforms which will
receive critical fixes include Office, Internet Explorer, Lync Visual
Studio and the Windows platform itself.
While Microsoft did not state specific
details on the vulnerabilities themselves, the company noted that the
critical Internet Explorer flaw was considered a lower risk for Windows
Server systems, while at least one of the critical Windows
vulnerabilities was not applicable to ARM-based Windows RT tablet
systems.
The company is planning to release the
update on 9 July with updates usually arriving in the late afternoon to
early evening UK time.
No comments:
Post a Comment