Tuesday, 19 June 2012

Critical Updates - Microsoft "Patch Tuesday".

Have you installed the latest patches available for your Computer?


Microsoft has released it's latest patches earlier this week (typically second Tuesday each month).

Many users & organisations have not applied the latest patches, and thus not protected against many of the vulnerabilities known, leaving the door open for Malware to actively exploit them.

For example, the latest Cumulative Security Update for Internet Explorer (2699988) bulletin addresses "one publicly disclosed and twelve privately reported vulnerabilities in Internet Explorer".

One of vulnerabilities, Sophos have commented on here, can be used reliably to gain remote code execution. This means that if someone was using an exploit for this type of vulnerability, and it your Computer or Server wasn't patched, that they would be able to run anything on it.

If you have Automatic Updates switched off, advice is to switch it on, so these patches can be applied.

No comments:

Post a Comment