'Critical' MS Exchange, Windows Patches on TapBy Ryan Naraine | Posted 2006-05-04 Email Print
Modernizing Authentication — What It Takes to Transform Secure Access
Three upcoming Microsoft security bulletins cover code execution flaws in Windows and the enterprise-facing MS Exchange product line.Microsoft plans to release three security bulletins on Tuesday, May 9, to cover several code execution flaws in Windows and the enterprise-facing Microsoft Exchange messaging and collaboration product.
The patches will carry a "critical" rating and will require a restart after installation, Microsoft said in its advance notification.
Microsoft typically applies a "critical" rating to high-priority vulnerabilities that can be exploited to allow the propagation of an Internet worm without any user action.
Two of the three bulletins will provide fixes for flaws in the Windows operating system, and it is very likely that a cumulative Internet Explorer fix could be included.
Several major flaws in IE are on the waiting-for-fixes list.
Based on 85 advisories published by Secunia between 2003 and 2005, about 25 percent of IE bugs remain unpatched.
Read the full story on eWEEK.com: 'Critical' MS Exchange, Windows Patches on Tap