Microsoft issues 15 security updates

By Tom Sanders on Jun 14, 2007 3:07 PM
Filed under Security

IE takes centre stage in June patch release.

Microsoft has released security updates repairing 15 security vulnerabilities in Windows and bundled products. 

Nine of the repaired vulnerabilities are rated 'critical', indicating that attackers can exploit the flaw without any user interaction.

Internet Explorer is the most patched Microsoft application in the June release. The browser received six plugs, five of which will repair 'critical' vulnerabilities.

The application is a prime target for attackers attempting to steal confidential information or recruit a computer for a botnet.

The flaws could allow malicious users to set up attacks by hosting a specially crafted website that promises content such as free pornographic images.

The remaining 'critical' flaws are spread over three other Windows components. Two affect the Mail application bundled with Windows Vista and could be exploited when a user opens a specially crafted message.

One affects the Secure Channel Windows component that implements the Secure Sockets Layer and Transport Layer Security internet standards in Windows XP.

The final 'critical' vulnerability is in an undisclosed component of the Win32 application programming interface.

The technology allows third-party applications to interact with the operating system but is also used by Internet Explorer to parse specially crafted web pages. The flaw affects Windows 2000, XP and Server 2003.

The remaining security holes have severity ratings ranging from 'important' to 'low'. Users can download the update from Windows Update or Microsoft Update Services. Full details of Microsoft's June security update are available on the TechNet Security Center website.

Follow us on Facebook and Twitter

Copyright ©


Microsoft issues 15 security updates
Top Stories
Revealed: The 2015 CRN Fast50!
Meet the fastest-growing IT service providers in Australia.
Microsoft Band 2 review: good... but not great
Comfortable after redesign, but still has many flaws as the original.
Moody's to count cyber risks in company credit ratings
Data security now a financial issue, not just reputational.
Sign up to receive CRN email bulletins
Was your most important vendor the same in 2015 as in 2014?

Latest Comments
CRN Magazine

Issue: 343 | October 2015

CRN Magazine looks in-depth at the emerging issues and developments for the channel, and provides insight, analysis and strategic information to help resellers better run their businesses.