Microsoft preparing bumper Patch Tuesday for February 2010

Microsoft issued an advanced bulletin notification on Thursday detailing 26 vulnerabilities the company plans to fix on Tuesday February 9.

February's Patch Tuesday will include 13 bulletins - five rated Critical, seven rated Important, and one rated Moderate - addressing 26 vulnerabilities. The huge bumper Patch Tuesday will also include a fix for a 17 year old Windows vulnerability. Eleven of the bulletins affect Windows and the remaining two affect Office. The Office vulnerabilities only affect older versions of Office. Office 2007 and Office 2008 for Mac are unaffected. 

Microsoft also confirmed it will not be issuing a patch next Tuesday for a new flaw discovered in Internet Explorer 6, 7 and 8 recently. Jerry Bryant, Sr. Security Communications Manager at Microsoft stated "We do not have an update for this issue planned for the normal February bulletin release. However, this vulnerability only affects versions of windows older than Vista in their default configuration." The new vulnerability affects IE 5.01 and IE 6 on Windows 2000, IE 6 on Windows 2000 SP4 and IE6, IE7 and IE8 on Windows XP and Windows 2003. IE7 and 8 on Windows Vista, Windows 7 and Windows Server 2008 are only affected if a user opts to disable protected mode or, in the case of Windows Server 2003 and 2008, is not running IE in Enhanced Security Configuration.

Microsoft also took the time to remind customers about Windows versions that are reaching the end of their product lifecycle:

  • Windows XP Service Pack 2 will no longer be supported as of July 13, 2010. Microsoft recommends upgrading to Service Pack 3 or to Windows 7 as soon as possible.
  • Windows Vista RTM will no longer be supported as of April 13, 2010. Service Pack 1 will still be supported until July 12, 2011 but Microsoft recommends customers update to Service Pack 2 or Windows 7.
  • Extended support for Windows 2000 will also be retired on July 13, 2010. At that time, Microsoft will no longer provide security or any other updates for Windows 2000.

Report a problem with article
Previous Story

Microsoft set to fix 17 year old Windows vulnerability next week

Next Story

Microsoft hits back at Dick bashing

17 Comments

Commenting is disabled on this article.

I hope with all the holes that are been found in IE..Enterprise get off their collective duff and do away with IE6. I had a client recently that wanted me to install a virtual machine on her Vista x64 laptop because she couldn't work from home without adobe 4.05 -->WTF!

warwagon said,
I didn't think they were still releasing updates for windows 2000.

8 releases in 2009, I didnt think so either!

It's almost like Microsoft has been having a rough time recently with reports on vulnerabilities and exploits, and to diffuse the situation they've dusted-off all the bug fixes they have lying around and decided to push them out. "That will keep them happy".

I wish MS would release XP SP4, there's way too many updates that have been released since SP3, hundreds of mb's of updates on windows update:(

Win7 SP1 will be very nice i'm sure:)

torrentthief said,
I wish MS would release XP SP4, there's way too many updates that have been released since SP3, hundreds of mb's of updates on windows update:(

Win7 SP1 will be very nice i'm sure:)

I dunno about a SP4 but a SR1 maybe? Same thing win2k got at one point iirc.

Edited by George P, Feb 4 2010, 10:24pm :

torrentthief said,
I wish MS would release XP SP4, there's way too many updates that have been released since SP3, hundreds of mb's of updates on windows update:(

Win7 SP1 will be very nice i'm sure:)

Yeah, that would be very nice... I had to install XP in a virtual machine not too long ago and all the updates were a bit of a pain...

Chrono951 said,
Good to see Windows 7 still has a lower number of patches. That must show some kinda of security improvement.

was about to say that......

Chrono951 said,
Good to see Windows 7 still has a lower number of patches. That must show some kinda of security improvement.

Indeed.

Chrono951 said,
Good to see Windows 7 still has a lower number of patches. That must show some kinda of security improvement.

What ???? 300+ bug fixes \ hot fixes in 3 Months (Sent to OEM's) is lower numbers ?
You will see the full list (and hundred bugs more) in it's glory in the comming SP1 :-)

Edited by ilev, Feb 5 2010, 8:30am :

ilev said,

What ???? 300+ bug fixes \ hot fixes in 3 Months (Sent to OEM's) is lower numbers ?
You will see the full list (and hundred bugs more) in it's glory in the comming SP1 :-)


Just because there were 300+ bug fixes doesn't really mean a lot. I bet you most of them were either very specific to their machines or didn't have much of an negative impact. The obvious reason that there's fewer patches released to WU this go around is because the issues aren't was widespread as they were with Vista or XP.

Chrono951 said,
Good to see Windows 7 still has a lower number of patches. That must show some kinda of security improvement.

It could also mean they have a heck harder to find them...