Click to Play

Is Your Site Secure?
The Internet is an amazing place, but it can also be very dangerous. Many times, webmasters are so focused on issues such as duplicate content that they neglect...

Recent Articles

How To Display Exceptions Through Propagation
There are many important things to remember to catch an exception. For instance one must use catch or finally to catch the thrown exceptions in try block. Also remember that try will never work without either a catch...

Helpful Java Q&A
If You are appearing for any technical job's interview specially for software and system development you must know the language Java it is considered as the strongest language present in recent times.To make you...

New Sony Computers Now Come With Chrome Installed
Sony and Google would like to confirm that, "it's not what you know, but who you know" is alive and well. At least, that's the official basis for Sony agreeing to make Google's Chrome the default browser in all Vaio...

Understanding And Implementing JAVA String Methods
Strings are very important part of any programming language.Same is the case with Java.There are so many String methods in String class and it will become difficult to explain all of them.I am mainly focusing on...

Understanding A Denial Of Service Attack
I heard on the news today that my favorite social network, Twitter, is being plagued by what they called a "denial of service attack". What on Earth is that? They're forced to not actually get service and it's an attack?


10.15.09

Symantec Encouraging Users To Install Patches ASAP

By Chris Crum

Says to Take Advantage of Biggest Patch Tuesday Yet

Microsoft's Patch Tuesday for this week has been the largest ever from the company. 13 security bulletins addressing 34 vulnerabilities were released. 22 of these vulnerabilities were considered critical. Microsoft has never addressed so many in a single month. The previous record, set in June, was only 31.

Included in the most recent Patch Tuesday, were patches for two vulnerabilities previously made public: one in Server Message Block Version 2 (SMBv2) and the other in Internet Information Services.

Security company Symantec has shared its views on this Patch Tuesday, which are quite positive. "We're pleased that Microsoft released a patch for the SMBv2 vulnerability," said Ben Greenbaum, senior research manager, Symantec Security Response. "The vulnerability was made public last month. We've yet to see a highly reliable exploit for it. Although we have seen limited attempts to exploit this vulnerability, we're glad to see this fixed before widespread attacks occur."
 
Brian GreenbaumIn addition, Microsoft also released the first security update for the release-to-manufacturing version of Windows 7. "The update that addresses vulnerabilities in Windows 7 relates to the Active Template Library issues Microsoft has been working on for a number of months now," said Greenbaum. "It essentially disables additional faulty ActiveX controls created using the library that have been distributed across Windows users’ machines."


Symantec says the vulnerabilities addressed in Internet Explorer and the GDI+ graphics library (what Windows uses to determine how to interact with certain graphics files that users encounter during everyday computer use) are serious too.

"The primary danger the GDI+ graphics library and Internet Explorer vulnerabilities pose is that these vulnerable components are present on the majority of Windows machines," said Greenbaum. "Many of the issues addressed today are fairly trivial to exploit. For example, via a drive-by-download style attack. In that case, all a computer user would have to do to become infected by an attack using one of these vulnerabilities is unsuspectingly visit a compromised Web site."

Needless to say, Symantec is strongly encouraging users to take advantage of these latest patches from Microsoft. They are also encouraging people in general, to regularly install vendor patches as soon as they are available, consider implementing an automated patch management solution, run all software with the least privileges required while maintaining functionality, and other basic security best practices.

About the Author:
Vaibhav Pandey got offered employment from an Indian Multinational IT Company. He is 21 years old. He has a huge interest in Java programming and has liked it from his study days. Vaibhav loves to blog and share his experiences and thoughts. He now resides in Lucknow, a state capital in India. Check out his blog at http://javatutorialsworld.blogspot.com.
About SysAdminNews
SysAdminNews is a collection of articles, news and commentary designed to keep system administrators informed about the latest trends impacting their profession. Updates and Advice for System Administrators





SysAdminNews is brought to you by:

SecurityConfig.com NetworkingFiles.com
NetworkNewz.com WebProASP.com
SysAdminNews.com SQLProNews.com
ITcertificationNews.com SysAdminNews.com
LinuxProNews.com WirelessProNews.com
CProgrammingTrends.com ITManagementNews.com





-- SysAdminNews is an iEntry, Inc. publication --
iEntry, Inc. 2549 Richmond Rd. Lexington KY, 40509
2009 iEntry, Inc.  All Rights Reserved  Privacy Policy  Legal

archives | advertising info | news headlines | free newsletters | comments/feedback | submit article


Database Forum Updates and Advice for System Administrators SysAdminNews News Archives About Us Feedback SysAdminNews.com About Article Archive News Downloads WebProWorld Forums iEntry Advertise Contact Jayde