Feeds

Cortana, remind me to patch Windows, IE, and Adobe gear next Tues

Well, Microsoft's answer to Siri has got to be good for something

Build a business case: developing custom apps

Microsoft will release eight security updates next Tuesday to squash remote-code execution bugs in Windows and Internet Explorer among other flaws.

Meanwhile, Adobe will issue new versions of Acrobat and Reader for this month's Patch Tuesday.

Two of the security updates from Microsoft are rated as critical because they allow miscreants to execute code from on vulnerable systems from afar: the Windows operating system from Server 2003 to Windows 8, web browser Internet Explorer 6 to 11, and some SharePoint-related software, are all at risk.

The other six updates are labelled important – one is a remote-code exec hole, four lead to privilege escalation and one allows hackers to bypass security protections. The affected software includes Microsoft Office 2007 to 2013, Windows and the .NET Framework.

Redmond, as usual, holds off documenting the vulnerabilities in further detail prior to the patch release.

The May release will be the first in more than a decade to not include any bulletins for Windows XP. The venerable OS was officially retired from support by Microsoft last month, though subsequent exploitation of flaws in the OS by miscreants has forced the company to issue an out-of-band update.

Adobe, meanwhile, will issue an update for four versions of its Reader and Acrobat software. The Adobe fix will address critical flaws in both the Windows and OS X versions of Reader and Acrobat 10 and 11.

Users and administrators are advised to test (if needed) and deploy all of next Tuesday's patches as soon as possible, least they fall victim to exploits targeting the newly disclosed vulnerabilities. ®

Secure remote control for conventional and virtual desktops

More from The Register

next story
UK fuzz want PINCODES on ALL mobile phones
Met Police calls for mandatory passwords on all new mobes
Canadian ISP Shaw falls over with 'routing' sickness
How sure are you of cloud computing now?
Don't call it throttling: Ericsson 'priority' tech gives users their own slice of spectrum
Actually it's a nifty trick - at least you'll pay for what you get
Three floats Jolla in Hong Kong: Says Sailfish is '3rd option'
Network throws hat into ring with Linux-powered handsets
Fifteen zero days found in hacker router comp romp
Four routers rooted in SOHOpelessly Broken challenge
New Sprint CEO says he will lower axe on staff – but prices come first
'Very disruptive' new rates to be revealed next week
PwC says US biz lagging in Internet of Things
Grass is greener in Asia, say the sensors
Ofcom sees RISE OF THE MACHINE-to-machine cell comms
Study spots 9% growth in IoT m2m mobile data connections
O2 vs Vodafone: Mobe firms grab for GCHQ, gov.uk security badge
No, the spooks love US best, say rival firms
Ancient pager tech SMS: It works, it's fab, but wow, get a load of that incoming SPAM
Networks' main issue: they don't know how it works, says expert
prev story

Whitepapers

5 things you didn’t know about cloud backup
IT departments are embracing cloud backup, but there’s a lot you need to know before choosing a service provider. Learn all the critical things you need to know.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.
Rethinking backup and recovery in the modern data center
Combining intelligence, operational analytics, and automation to enable efficient, data-driven IT organizations using the HP ABR approach.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.