6 of the 10 affect Windows, with two carrying the critical rating, three rated as important, with one posted as moderate. For the remaining 4, all are rated as critical, impacting Internet Explorer, Microsoft Office Word, Microsoft Office Excel and Microsoft Works Converters.
The two security advisories involve kill bits for Active X and a non-security update for DNS devolution that actually changes the security config of systems when you apply it, so Redmond decided to release it with an advisory.
SANS has a nice monthly table that outlines the patches, associated CVEs, and other pertinent information, including their suggested patching prioritization.
Malicious code is already in the wild for some of these, with active exploits in progress for several, but as always, we'll see an uptick in activity now that these have been publicly released. I wouldn't dally around long before rolling these out, especially MS09-019 for Internet Explorer.
No comments:
Post a Comment
Please tell me what you think.