Microsoft issued a critical software update Tuesday, plugging three vulnerabilities in all versions of its Windows operating system. The three flaws, two of which were reported privately and the third of which was publicly disclosed, deal with a hole in the Microsoft Server Message Block Protocol. The vulnerabilities could enable an attacker who successfully exploits them to install programs; view, change or delete data; or create new accounts with full user rights. The security update addresses the flaws by validating the fields inside the SMB packets, according to Microsoft.
Loading ...
Microsoft Stomps Beastly Server Bugs
Posted by: Walaika Haskins January 14, 2009 02:47 PMMicrosoft issued a critical software update Tuesday, plugging three vulnerabilities in all versions of its Windows operating system. The three flaws, two of which were reported privately and the third of which was publicly disclosed, deal with a hole in the Microsoft Server Message Block Protocol. The vulnerabilities could enable an attacker who successfully exploits them to install programs; view, change or delete data; or create new accounts with full user rights. The security update addresses the flaws by validating the fields inside the SMB packets, according to Microsoft.