Microsoft to release four new patches next week

**Glaswegian** · 05-09-2008, 02:01 PM

Microsoft plans to fix critical bugs in its Word, Publisher and Jet database software next week.

The software vendor also plans to release a less-critical update for its anti-virus products, fixing a flaw that attackers could use to launch a denial of service (DoS) attack against products such as Windows Live OneCare and Microsoft Forefront Security.

The updates will be released Tuesday, the day set aside for Microsoft's monthly set of security patches. Microsoft has provided some early details on the patches.

Microsoft considers flaws to be critical when they could be exploited by attackers in order to run unauthorised software on a victim's system.

Although Microsoft's note does not describe the bugs in detail, it looks like the company is planning to fix a known bug in the Jet database engine, which was disclosed in late March. Attackers had figured out a new way to launch a malicious Jet file using Microsoft Word, Microsoft warned in a blog posting.

http://www.techworld.com/security/ne...&NewsID=101451

05-09-2008, 02:01 PM	#1 (permalink)
Glaswegian Moderator/ Rangemaster TSF Academy; Analyst, Security Team; Oor Wullie; TSF Surgeon and Resident Comic Join Date: Sep 2005 Location: Glasgow Posts: 207,104 OS: Win XP Pro SP3 My System Blog Entries: 9	Microsoft to release four new patches next week Microsoft plans to fix critical bugs in its Word, Publisher and Jet database software next week. The software vendor also plans to release a less-critical update for its anti-virus products, fixing a flaw that attackers could use to launch a denial of service (DoS) attack against products such as Windows Live OneCare and Microsoft Forefront Security. The updates will be released Tuesday, the day set aside for Microsoft's monthly set of security patches. Microsoft has provided some early details on the patches. Microsoft considers flaws to be critical when they could be exploited by attackers in order to run unauthorised software on a victim's system. Although Microsoft's note does not describe the bugs in detail, it looks like the company is planning to fix a known bug in the Jet database engine, which was disclosed in late March. Attackers had figured out a new way to launch a malicious Jet file using Microsoft Word, Microsoft warned in a blog posting. http://www.techworld.com/security/ne...&NewsID=101451 __________________ Iain - Defender of the Haggis and all things Scottish. I don't help by PM - post in the Forums. Ad-Aware::SpywareBlaster::SpyBot::SpywareGuard::SnoopFree::AVG Free::HOSTS File::HijackThis::Donate::5 Steps For Infected PCs