Microsoft’s October Security Updates Go Large

This post was written by admin on October 14, 2009
Posted Under: Free PC Security, Microsoft, Monthly Update, Security

Yesterday, 13 October 2009, Microsoft issued its biggest ever security update with 13 updates to patch 34 vulnerabilities, the majority of which could allow remote code execution on users computers. The download was a massive 41.4MB

Microsoft stated that eight of the bulletins were rated as critical which is the most serious sort of vulnerability and it is essential that these are installed.

The security patches will close loopholes in many different programs including different versions of Windows, Internet Explorer and some Office applications.

The eight critical bulletins include fixes for components in Server Message Block, Windows Media Player and Runtime as well as software for Internet Explorer, Active Template Library, .NET and GDI Library. All eight of the bulletins fix flaws which could allow an attacker to remotely execute code on a targeted system.

Many users will get the updates automatically but if you have automatic updates turned off you will need to go to Windows Update to download the patches.

Once downloaded and installed the computer will need to be re-started before the fixes can take effect.

Two of the fixes were for problems flagged in earlier advisories and one of those loopholes, for the File Transfer Protocol (FTP) which is bundled in with Microsoft's Internet Information Server is already being exploited by some of the hi-tech criminals.

Most of these patches will stop unauthenticated remote attackers from compromising users computers and gaining control.

Windows, being the most widely used operating system is also the most popular target for the criminals who will exploit any weaknesses they can find and most of the malicious programs, including worms and trojans and backdoors, are aimed at the Windows OS.