February 13, 2008
Yesterday Microsoft released a series of patches for 11 Windows vulnerabilities, which included 6 critical vulnerabilities. The most critical are the three related to the Internet Explorer 7 browser. The risk of remote code execution is definitely the elephant in the room for these updates, so users who are not on Automatic Updates need to take heed.
Note that the recently Tier I baseline controls require security updates to be applied in a timely fashion. Thes are best applied in the form of Automatic Updates of the operating system. Case users are advised to apply these updates immediately.
Some common applications are not typically updated when the operating system updates are applied, so Case users need to be diligent in addressing vulnerabilities in major applications. Applications pertinent to Case users that also require current updates this week are:
Adobe Acrobat Reader version 8.1.2 has updates for all operating systems.
for the MacOS and QuickTime
for all operating systems.
Posted by Thomas Siu at 04:35 PM