Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Two Microsoft patches released for January.

Lumension Security : 09 January, 2008  (Technical Article)
Lumension warns IT staff to install latest Microsoft patches early to avoid becoming victims of serious vulnerabilities which include Vista.
Microsoft has released two patches this January Patch Tuesday, one rated critical and one rated important.

Alan Bentley, VP of Lumension Security EMEA (formerly PatchLink), comments:

"At first glance, it seems IT managers have got off lightly this month. However, it is not the quantity of patches that is important this month. MS08-001 is a fairly serious vulnerability, fixing two privately reported vulnerabilities in the TCP/IP stack used in all versions of Windows, including Microsoft Vista. The vulnerability is at the kernel level and if exploited, a hacker could take complete control of a machine.

"A hacker looking to exploit this vulnerability could interfere with video or audio streams such as IP-based teleconferencing or streaming media. To eradicate this immediate threat, organisations should block IP multicasting at the perimeter firewall and the Vista firewall (which is not an option in XP) while testing and rolling out the patch as soon as possible.

"IT administrators cannot ignore MS08-002 either. While it addresses a less severe vulnerability in Microsoft Windows Local Security Authority Subsystem Service (LSASS), if it is exploited a hacker could elevate privileges on the affected machine and take complete control of a system."
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo