• August 2006

    by  • August 2, 2006 • 2006

    Microsoft released 12 new Security Bulletins this month- 9 Critical and 3 Important. Relative to other months and other “Critical” bulletins, some of the August Security Bulletins perhaps warranted a higher classification of “Urgently Critical” or something to the effect. The MS06-040 Security Bulletin in particular, which relates to a flaw in the Server Service, is potentially capable of an exploit that could spread with the speed of the Blaster worm. Exploit code is already in the wild and spreading, so if you have not yet applied these patches, I suggest you do so immediately. I will issue one caveat. There appears to be some issue with the MS06-042 patch causing the Internet Explorer Web browser to crash on some systems, mainly Windows 2000 and Windows XP SP1 (Service Pack 1).

    To view a summary of the August bulletins, visit Microsoft Security Bulletin Summary for August, 2006. Click the links below to view the individual Microsoft Security Bulletins and to download any patches that might be required for your system. You can also visit Windows Update to automatically determine what patches or updates your system needs.

    About

    Tony has driven security policies and technologies for antivirus and incident response for Fortune 500 companies, and he has been network administrator and technical support for smaller companies. He has written for a variety of other Web sites and publications, including BizTech Magazine, PC World, SearchSecurity.com, WindowsNetworking.com, Smart Computing magazine, and Information Security magazine. Tony is a CISSP (Certified Information Systems Security Professional) and ISSAP (Information Systems Security Architecture Professional). He is Microsoft Certified as an MCSE (Microsoft Certified Systems Engineer) and MCSA (Microsoft Certified Systems Administrator) in Windows 2000 and an MCP (Microsoft Certified Professional) in Windows NT. Tony has been recognized by Microsoft as an MVP (Most Valuable Professional) in Windows security since 2006. In addition to his Web site and magazine contributions, Tony was also tech editor of PCI Compliance (ISBN: 1597491659 ) and author of Essential Computer Security: Everyone’s Guide to E-mail, Internet, and Wireless Security (ISBN: 1597491144), coauthor of Hacker’s Challenge 3 (ISBN: 0072263040) and a contributing author to Winternals: Defragmentation, Recovery, and Administration Field Guide (ISBN: 1597490792), Combating Spyware in the Enterprise (ISBN: 1597490644) Syngress Force 2006 Emerging Threat Analysis: From Mischief to Malicious (ISBN: 1597490563), Botnets: The Killer Web Applications (ISBN: 1597491357), and AVIEN Malware Defense Guide for the Enterprise (ISBN: 1597491640).

    http://www.tonybradley.com