main

Microsoft Security Updates: December 2005

lardiop   on 13 December 2005 - 20:24 · 23 comments & 3100 views

Advertisement (Why?)
Microsoft has just posted their security patch builletin for the month of December. As usual all required patches for your PC can be found on Windows Update. Here's a brief summary of the two patches released this month:


MS05-054: Cumulative Security Update for Internet Explorer (905915) Critical
Vulnerabilities exist in Internet Explorer, the most severe of these could allow an attacker to take complete control of an affected system.

MS05-055: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (908523) Important
A vulnerability exists in the Windows Kernel that could allow elevation of privileges on an affected system. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability.

View: Neowin Forum Discussion
View: Microsoft Security Bulletin Summary for December | Microsoft Windows Update





Share this Article

About the Author

Full name: Unknown
User name: lardiop
Contact: via forum PM
Submissions: View All
More: View Profile

Related news

Post a comment · Send to friend Comments · There are 23 additional comments
(4 replies) #1 mad_onion on 13 Dec 2005 - 20:31
good good i enjoy updating windows its my favourite part of the month
#1.1 Napalm Frog on 13 Dec 2005 - 20:38
Sadly I feel the same way too. Can't wait for Autopatcher XP December. Building my sister's computer soon.
#1.2 sphbecker on 13 Dec 2005 - 22:02
Man, you guys live pretty sad lives if updating yoru OS is the highlight of your month :p
#1.3 Napalm Frog on 14 Dec 2005 - 00:34
Sad doesn't even come close...
#1.4 HoochieMamma on 14 Dec 2005 - 01:32
Maybe fav part of the month in computer terms?
(2 replies) #2 metalguy90 on 13 Dec 2005 - 21:00
when going to WU, does anyone else have this update:
KB910437

when i try to go to find more information on the MS site, it tells me that there is none.

does anyone have the admin install file for this update?

Last edited by metalguy90 on 13 Dec 2005 - 21:12
#2.1 Croquant on 14 Dec 2005 - 01:58
Are you sure you've got the number right?
#2.2 TheBlazingAngel on 14 Dec 2005 - 02:18
yes, that numbers correct, i got it & installed it too...
i also cant find any info on it...

[edit]
just found the link on msfn: http://support.microsoft.com/kb/91 0437/en-us

i dont know why google didnt come up with anything... :iiam:
[/edit]

Last edited by TheBlazingAngel on 15 Dec 2005 - 04:32
#3 warwagon on 13 Dec 2005 - 21:45
I usually wait a week to see if any of the patches break peoples machines
(6 replies) #4 ruudjacobs on 13 Dec 2005 - 21:58
It still don't seem to get the fact that software can be so damn crappy it needs critical updates each month...
Sorry for the flameage but .... wth...
#4.1 warwagon on 13 Dec 2005 - 22:06
show me a perfect bug free peice of software then and i'll give you a cookie, add to the fact its widly used and thousands of people are trying all sorts of ways to break in.
#4.2 ruudjacobs on 13 Dec 2005 - 22:11
as a coder I am very aware of that but...you try to do it good in one time, its okay to patch your software once or twice... but what can possibly be wrong when you have to patch your software each and every month
#4.3 sphbecker on 13 Dec 2005 - 22:33
Keep in mind that much of Windows XP and IE's code was written during a time when security wasn't all that big of an issue. I'm not trying to give MS a pass because they should have done better, but in many cases we are dealing with code 5-10 years old, and they have done a good job in the past few years both in writing secure applications and fixing up old stuff. Take IIS 6.0 for example; it has been out almost 2 years and I don't think there has been a single security issue with it yet.
#4.4 d4t4b0mb on 13 Dec 2005 - 22:43
Well, since your a coder, whats the name of the operating system you've created.&nbsp; I'd like to give it a spin.&nbsp; <br><br>In all seriousness, I'd love to find an OS out there that *doesn't* have security updates and errata on a frequent basis.&nbsp; I've not yet found one.<br>

#4.5 mrbester on 14 Dec 2005 - 10:54
Fair enough, everything will have bugs, but 2003 isn't 5yo code. XP has had 2 service packs which are supposed to fix this kind of crap and 2003 has had one. Trotting out the same excuse SP after SP (until support is discontinued, so it's then your fault you're using a buggy OS), and patch cluster after patch cluster gets extremely tedious. How many times do you need to patch a DLL before you consider it might need rewriting from the ground up?
#4.6 Black on 14 Dec 2005 - 11:01
Of course if you rewrite it you run the risk of introducing a whole load of new flaws and you have to hope that you manage to carry over the knowledge of every quirky edge scenario fix from the last version. Rewrites on large sections or software tend to be a pain in the ass.
#5 ruudjacobs on 13 Dec 2005 - 22:48
Hmm that's right... the problem lies in software-base-code-age... sorry for the flame and n00bage..
(3 replies) #6 chorpeac on 14 Dec 2005 - 03:57
I have IE7, and I can't get to Windows update. How is this supposed to work??
#6.1 Express on 14 Dec 2005 - 04:19
I have IE7 and windows update works.
Clear you cache
and the right-clic uninstall all installed objects under Tools->Internet Options->General->Settings->View Objects.

It should work.
#6.2 chorpeac on 14 Dec 2005 - 13:52
ok I will give this a try.
#6.3 chorpeac on 15 Dec 2005 - 04:32
Nope I cleared my cache, I cleared my cookies, I uninstalled all the objects from that folder, and I cannot update windows...Not good...

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Advertisement (Why?)
News powered by Neowin Management System (Build - 5.0.879) © 2000 - 2008 Neowin.net