Six critical updates for Patch Tuesday

Six critical updates for Patch Tuesday

The latest round of patches fixes a total of six 'Critical' security holes in Microsoft products, some of which could lead to remote code execution.

Microsoft's monthly Patch Tuesday update cycle has a sextet of critical security updates for users this week.

According to ExtremeTech, out of the eight total updates to be released today six are considered Critical, Microsoft's highest security rating.

The first Critical update affects all currently shipping versions of Windows – including Vista on the desktop and Server 2008 in the enterprise – and plugs a hole that could, under certain circumstances, lead to remote code execution. A similar flaw has been discovered in Internet Explorer, with a second Critical patch being released to fix an issue which again affects all currently shipping versions of Windows with Internet Explorer 7 installed.

Users of the Microsoft Office suite will also want to be installing today's updates, with another Critical issue being addressed in Office 2000 and 2007 – although, strangely, Office 2003 is unaffected. If you're still using Office 2000, then you'll want a second update to fix a security hole in Excel 2000 – although the update applies to other versions of Office, the issue is rated Important on all versions except 2000.

A fix for a bug in Windows Media Player is rated Important and again affects all currently shipping versions, aside from those compiled for Intel's ill-fated Itanium architecture.

A final Critical update covers a bug in Visual Basic, including the version of the language shipped as part of FrontPage and Microsoft Project along with Visual Basic 6, Visual Basic.NET, and Visual FoxPro.

As always, the advice is to update as soon as possible – but business users may want to give the patches a thorough testing before approving them for installation enterprise-wide.

Have you experienced any issues that you think may be down to bugs patched in today's Patch Tuesday, or is Microsoft merely covering its corporate behind referring to the fixes as 'Critical'? Share your thoughts over in the forums.


Discuss in the forums Reply
outlawaol 9th December 2008, 17:38 Quote
Hoorah for updates! Boo for restarts!

teamtd11 9th December 2008, 17:41 Quote
I can not see them on windows update yet, guess they will appear later.

I never bother restarting. just tell it to go away till i shut down at night :p
TomH 9th December 2008, 18:18 Quote
You can just disable the automatic updates service once the updates are complete. It won't bug you then, and you can quite happily continue working until you would like to shut down. :)
phuzz 10th December 2008, 12:07 Quote
Ignoring the Itanium versions, our WSUS server is downloading 1.5Gb of patches today, admittedly that's the full fat versions of each patch for each different OS (and another for the x64 version of each), but it still feels a bit over the top.
Log in

You are not logged in, please login with your forum account below. If you don't already have an account please register to start contributing.

Discuss in the forums