Microsoft on Thursday said next week's Patch Tuesday would include eight patches, five of them critical, including one addressing a vulnerability in Excel.
the fact that both that Excel vulnerability and the Excel patch slated for Tuesday affect Microsoft Office 2000, 2002, 2003, and 2007, as well as Microsoft Office 2004 and 2008 for the Mac, it could be the same weakness.
Security firm Symantec said in February that it had discovered malicious files in the wild in Japan that attempt to exploit the Excel Unspecified Remote Code Execution Vulnerability. The attack requires a computer user to open an attachment sent via e-mail that has a maliciously crafted Excel document.
Also on Tuesday, Microsoft will provide updates addressing critical remote code execution vulnerability in Internet Explorer, Windows, and Office, and less severe vulnerabilities in Windows and Microsoft's Forefront Edge Security.
Affected software includes IE 7, Windows 2000, Windows XP, Windows Vista, Server 2003, and Server 2008, according to Microsoft's advance-notification bulletin, released on the Thursday before every Patch Tuesday, which is the second Tuesday of the month.
Source: news.cnet.com
the fact that both that Excel vulnerability and the Excel patch slated for Tuesday affect Microsoft Office 2000, 2002, 2003, and 2007, as well as Microsoft Office 2004 and 2008 for the Mac, it could be the same weakness.
Security firm Symantec said in February that it had discovered malicious files in the wild in Japan that attempt to exploit the Excel Unspecified Remote Code Execution Vulnerability. The attack requires a computer user to open an attachment sent via e-mail that has a maliciously crafted Excel document.
Also on Tuesday, Microsoft will provide updates addressing critical remote code execution vulnerability in Internet Explorer, Windows, and Office, and less severe vulnerabilities in Windows and Microsoft's Forefront Edge Security.
Affected software includes IE 7, Windows 2000, Windows XP, Windows Vista, Server 2003, and Server 2008, according to Microsoft's advance-notification bulletin, released on the Thursday before every Patch Tuesday, which is the second Tuesday of the month.
Source: news.cnet.com
No comments:
Post a Comment