Sales & Marketing
Training & Development
PCs & Servers
Imaging & Printing
Eight April patches from Microsoft
Apr 10, 2008 6:46 AM
Microsoft has released its latest security update package and there are five critical fixes in this month's update.
The April edition of 'Patch Tuesday' fixes flaws in Windows, Office and Internet Explorer. Five of the patches address vulnerabilities that Microsoft has rated 'critical'.
Two of the critical patches addressed issues found in Internet Explorer. The patches included a remote code execution vulnerability in the browser itself and another patch for the ActiveX plugin used to connect the browser with Yahoo's Music Jukebox service.
Among the other critical fixes is a flaw in Office's handling of Project files, which could allow an attacker to remotely execute code on a target system.
The company also issued a fix for a pair of vulnerabilities in Office's Visio component, which were both rated as 'important'.
The remaining four patches addressed issues with Windows. Among them a privilege elevation flaw in Windows 2000, XP, Server 2003, Vista, and Server 2008. Other patches included a remote code execution flaw in the VBSript/Jscript component, a DNS spoofing flaw, and a remote code execution vulnerability in the handling of EMF and WMF image files.
security research and communications manager Dave Marcus said that the update should once again serve as a warning to users of the dangers that lurk on the web.
"Many of the vulnerabilities addressed by the fixes could be exploited if a Windows user simply visits a malicious website, a favourite attack method among cybercriminals,” said Marcus.
"In such drive-by downloads an attacker places malware onto a vulnerable computer without the user noticing it. This malware most often targets various types of identity information of the victim."
Follow us on
Microsoft boss Pip Marlow joins Australian Rugby Union board
Microsoft targets Google users with expanded Office 365 offer
Microsoft buys software keyboard maker SwiftKey for US$250m
Microsoft completes underwater data centre trial
Toshiba Australia recalls PC batteries due to fire hazard
Panasonic recalls batteries over fire hazard
Melbourne ISV opens Brazilian channel
Is this the end of VMware EVO:Rail?
Meet the hottest security vendors on the planet
Send us your tips
You must be a registered member of CRN to post a comment.
Click here to login
Click here to register
Nick Verykios: HPE will "add $200m to our revenue"
Disruptive win for Distribution Central.
Resellers judge HPE distribution shake-up
"This was a very, very big step for HPE."
Optus makes $461m in nine months from managed services
Optus Business going gangbusters.
Sign up to receive CRN email bulletins
Hewlett Packard drops three Australian disties
Criminals impersonate Arrow exec to steal $18 million
ACCC to pursue Apple for bricking iPhones
KPMG acquires Melbourne service provider
Optus is most complained-about telco
Powered by Disqus
Which regulator is the most effective?
ACCC (Australian Competition & Consumer Commission)
ASIC (Australian Securities & Investments Commission)
TIO (Telecommunications Industry Ombudsman)
ACMA (Australian Communications & Media Authority)
view previous polls »
Powered by Disqus
CRN Magazine looks in-depth at the emerging issues and developments for the channel, and provides insight, analysis and strategic information to help resellers better run their businesses.
What's in this issue?
Most popular tech stories
7 accounting packages for Australian small businesses compared: including MYOB, QuickBooks Online, Reckon, Xero
Tip: Your shop can use a smartphone instead of an EFTPOS terminal
Do you use Dropbox? Here are some clever tricks
Do you know these 12 eBay tips?
Check your Toughbook battery today
'Embarrassing' human error behind national Telstra outage
Photos: The CIO movements that made headlines in 2015
DBC gives up on iiNet piracy case
NSW govt hires consultants to help stop IT project blowouts
Australian PPC-1 cable cut, out of action until March
How to: How much RAM do you really need?
Top 25 fantasy games of all time
101 Games You Must Play
How to recover deleted files
Is the dark web safe?
20 key tips for succeeding at Rainbow Six Siege
Star Wars original trilogy heroes and villains
Top Windows 10 Gaming Apps
Rise of the Tomb Raider PC screenshots
PC & Tech Authority
nextmedia Pty Ltd
. All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's
Terms & Conditions
Login to CRN
Email or Username:
* Email or Username required
* Password required
Forgot your password?
Don't have an account? Register now!
To request a
, enter the email address linked to your CRN account and we'll send one to you.
* Email required
* Invalid Email address
* Invalid Email address
Click here to return to Login Form
comments powered by Disqus.