October 11, 2006
On October 10th, Micrsoft Corporation released a series of critcial patches and updates that attend to a number of client-based vulnerabilities. The patching systems at Microsoft were not fully available yesterday, so users are reminded to ensure thier patches are run after today. According to the SANS Institute .
Microsoft is responding to the IE browswer security problems with a new 'push' of Interenet Explorer 7.
This is also the last patch set for Windows XP SP1. This version has gone the way of Windows NT. Case users are advised to ensure Windows XP hosts have been upgraded to SP2 (available at ).
Microsoft IE 7 deployment will be deployed to clients with Automated Updates as a high priority update, expected to be pushed on or around October 18th. There are more security features- more restrictions to Active-X controls, integration with Windows Defender. This version of IE has an Anti-Phishing Toolbar, which reports your web browsing to Microsoft, which then looks up phishing sites. Also, sites with bad SSL certificates are directed to a 'Warning' or error page.
Case users are advised to review the updates and features of Internet Explorer 7, and decide appropriately for IE updates when they arrive next week.
Posted by Thomas Siu at 12:57 PM