Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Microsoft plans to push out 12 patches next week as part of its monthly security update – two of which will close publicly known vulnerabilities.
Three of the 12 bulletins are deemed "critical" by Microsoft, while the remaining nine earned an "important" designation, according to advance notification released Thursday. The patches address a total of 22 bugs in Windows, Internet Explorer (IE), Office, Visual Studio and Internet Information Service (IIS).
The update, scheduled to arrive Tuesday, will include a fix for a flaw in the Windows Graphics Rendering Engine that could lead to remote code execution, Angela Gunn, senior marketing communications manager for Microsoft Trustworthy Computing, wrote in a company blog post.
The vulnerability, revealed in December at a Korean hacker event, can enable an attacker to install malicious programs, access data or create accounts with full user rights, according to an advisory.
Also on the docket for repair is a gaping hole in all supported versions of IE, Gunn said. Exploit code has been published.
Gunn also revealed that Microsoft is prepping a fix for an issue affecting the FTP service in IIS versions 7.0 and 7.5.
Patches will be issued next Tuesday at 5am AEDST.
This article originally appeared at scmagazineus.com
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.