Feeds

Three critical fixes star in Patch Tuesday update

Among the unmagnificent seven

Intelligent flash storage arrays

Three of the seven patches Microsoft released on Tuesday earn the dread rating of critical.

Updates involving flaws in handling streaming media by Microsoft DirectX, bugs in Windows Media Format Runtime, and multiple vulnerabilities in IE all pose a severe risk.

In all three cases the vulnerabilities addressed by the update create a possible means for miscreants to smuggle malware onto, or otherwise attack, vulnerable Windows boxes. But the IE update deserves special attention since hackers are actively exploiting the bug to attack vulnerable machines, the SANS Institute's Internet Storm Centre warns.

The remaining four "important" updates address bugs including a brace of bugs in Windows Vista and a security bug in DRM software from Macrovision that comes bundled with Windows. Macrovision issued a patch to address flaws in its SafeDisk utility in November, which is just as well because the bug has become the target of various attacks by crackers.

Microsoft's December patch summary can be found here. A rather more colourful (graphical) overview from SANS can be found here. ®

Secure remote control for conventional and virtual desktops

More from The Register

next story
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
NSA SOURCE CODE LEAK: Information slurp tools to appear online
Now you can run your own intelligence agency
Microsoft: Your Linux Docker containers are now OURS to command
New tool lets admins wrangle Linux apps from Windows
First in line to order a Nexus 6? AT&T has a BRICK for you
Black Screen of Death plagues early Google-mobe batch
Microsoft adds video offering to Office 365. Oh NOES, you'll need Adobe Flash
Lovely presentations... but not on your Flash-hating mobe
You stupid BRICK! PCs running Avast AV can't handle Windows fixes
Fix issued, fingers pointed, forums in flames
prev story

Whitepapers

Seattle children’s accelerates Citrix login times by 500% with cross-tier insight
Seattle Children’s is a leading research hospital with a large and growing Citrix XenDesktop deployment. See how they used ExtraHop to accelerate launch times.
How to determine if cloud backup is right for your servers
Two key factors, technical feasibility and TCO economics, that backup and IT operations managers should consider when assessing cloud backup.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.