Microsoft: Just a pair of security updates coming next week
Security administrators should have a pretty easy time of it next Tuesday as Microsoft says it will issue just two updates in its monthly security software release.
Microsoft said Thursday that next week's updates will include a critical update for the Windows operating system as well as a less-serious "important" Windows update.
Microsoft has been working on a fix for buggy antipiracy that has been shipping with Windows for the last few years and security experts believe that this will be one of the flaws fixed next week. The bug lies in the secdrv.sys driver built by Macrovision that ships with Windows XP, Server 2003, and Vista, but Vista is not vulnerable to the problem, according to Microsoft.
The software vendor is aware of "limited attacks" that exploit this vulnerability to get elevated privileges on a victim's machine.
Users who are concerned about the vulnerability can remove the secdrv.sys driver, but this software is required in order to play games that are protected by Macrovision's SafeDisc copy-protection software.
The second update appears to fix a "spoofing" vulnerability in Windows that Microsoft had planned to fix in October, but which was pulled at the last minute.
As is customary, Microsoft didn't say Thursday what exactly it will be fixing in next week's updates, but the company did say that the critical update will be for Windows XP and Server 2003 users, while the important update will be for Windows 2000, and Windows Server 2003.
Two sets of patches is far fewer than normal for Microsoft. Last month, Microsoft released six security updates.
- +
Microsoft security patches focus on client bugs 12 December, 2007 08:01:25
Microsoft has issued critical bug-fixes for Internet Explorer, DirectX, and its Windows Media Format technology.Microsoft has released its monthly set of security patches, fixing critical flaws in the Windows desktop. - +
Microsoft: Flaw could lead to worm attack 09 January, 2008 08:15:12
Microsoft has patched three Windows bugs, including one that could be exploited by a computer worm attack.Microsoft has fixed a critical flaw in the Windows operating system that could be used by criminals to create a self-copying computer worm attack. - +
Vista SP1 is ready -- or is it? 05 February, 2008 08:08:28
Crucial service-pack code wraps, but when will users get it? That's the questionJust a little more than a year after its first crack at Vista, Microsoft Monday announced that Vista 2.0 -- officially Service Pack 1, or SP1 -- has gone final -- just as had been rumored over the weekend. Officially it's gone RTM, which is Microsoft-speak for "release to manufacturing." That's code for done, as in signed off, as in shipped out for duplication and distribution. - +
Microsoft ends year by patching 11 bugs 13 December, 2007 08:40:19
Critical fixes for Media Player and Internet ExplorerMicrosoft released seven security bulletins this week that patch 11 vulnerabilities in Windows, Internet Explorer, Windows Media Player and other parts of the operating system. Two of the bugs are currently being exploited by attackers, Microsoft confirmed. - +
Life on the EEEdge: Daily life with Asus' tiny laptop 04 January, 2008 07:15:21
6 annoying things (and 3 great ones) about Asus' ultraportableLike many gearheads, I've owned a lot of portable computers over the years -- and I've wanted to replace every last one with a smaller, sleeker upgrade, from the "luggable" Apple IIc onward. But most of those upgrades have left me disappointed: with the lack of software; with cheap, hard-to-use interfaces; and with "optional" add-ons that were in fact very much necessary to make the machine useful.
Click here for case studies, whitepapers and other useful vendor content 
ARN Panel Sessions: Day 3The last of our panel sessions recorded live at CeBIT 2008. Today, the topic is storage. Data is growing at an enormous rate, so what does the future hold?
Weekly Tech News Update: 21st November 2008Yahoo's CEO says goodbye, Intel introduces a new processor, and robots run wild. All that news and more on this week's World Tech Update
Electronic voting in U.S. electionDoubts about voting machines are lingering in the minds of many Americans as they head to the polls.
When an IT disaster occurs, how handy it would be to push a button and start again as if nothing had happened.
Discover and learn more about CA XOSoft today.
PGP and Ponemon Institute Unveil Inaugural Australian Data Breach Study 2008 20 November, 2008 17:34:00
Symantec Cloud Services Transform Data Centre Operations Through Proactive Management 20 November, 2008 12:06:00
Verizon Business Offers Tips to Building a Successful Unified Communications and Collaboration Plan 20 November, 2008 12:04:00
NetApp Named 2008 Citrix Ready Solution of the Year by Citrix Systems 20 November, 2008 11:33:00
Extreme Networks Ethernet Transport lowers total cost of ownership for carrier metro networks 20 November, 2008 10:21:00
Microsoft® takes legal action against software pirates
Recently Microsoft took legal action against individuals and resellers for distributing and selling unauthorised Microsoft software.
Buying Guides
Latest Products
Buying Guides
