Patch Tuesday Fixes for Windows XP/Vista & Server

Patch Tuesday brought several fixes to Windows yesterday, and thanks to Neowin user fr33k we have them listed below. Windows XP users are urged to fire up Windows Update and install these if you don't already allow for "Automatic Updates".

Cumulative Security Update for Internet Explorer 7 for Windows XP/Vista/2000/Server 2003/Server 2008 (KB950759)
Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer.

Security Update for Windows XP/Vista/Server 2003 (KB951376)
A security issue has been identified that could allow an unauthenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.

Security Update for Windows XP/Vista/Server 2003 (KB950762)
A security issue has been identified that could allow an unauthenticated, remote attacker to cause the affected system to stop responding. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.

Cumulative Security Update for ActiveX Killbits for Windows XP/Vista/2000/Server 2003/Server 2008 (KB950760)
Security issues have been identified in ActiveX controls that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer.

Security Update for Windows XP/Vista/2000/Server 2003/Server 2008 (KB951698)
A security issue has been identified in Microsoft DirectShow that could allow an attacker to compromise your Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.

Windows Malicious Software Removal Tool - June 2008 (KB890830)
After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product.

Report a problem with article
Previous Story

Plurk readying itself for open APIs?

Next Story

Apple Repairs Five QuickTime Flaws

8 Comments

Commenting is disabled on this article.

Windows isn't nearly as bad as it used to be. Unplug/replug a mouse and I think 3.11 would require restart (exit and restart win). Things have gotten progressively better. From what I hear Vista is able to hotplug many modules, and only a few core items require reboot. Much like Linux, if you ask me. Kernel still needs a reboot.

Unfortunately, with lots of Windows dependencies and things in userspace that cannot be unloaded alone,
reboot is still better (at last - cleaner) way of commiting updates that unload_and_load_everything_above_kernel();

Changing this will require change in Windows' philosophy...

AFAIK, the only part of an OS that would need to reboot your computer is the kernel or a kernel module.

If you update an application currently in use, do these things :

- Tell the user you are going to close the application and to save his work.
- Wait while the user saves his work and press OK.
- Close the application if it is still open
- Update the application
- Restart the application

Hey, I updated the software without having to reboot.

Any update to Internet Explorer, Windows media player, Windows Explorer, etc. could be done without having to restart the computer.

In most cases update updates DLL files...
So let's pretend we need to update user32.dll - guess how much you have to shutdown
to do this - I bet almost everything in userspace...

Updates to IE and WMP can be done without having to restart the computer, providing
they aren't open - try to install update to IE from standalone EXE - no reboot required...

It's all because of Windows' way of blocking write access to open files... Linux just doesn't
block access to any file, so you can update anything - and even effectively delete entire
filesystem...

AND, you don't have to reboot to reload kernel, Linux kernel has kexec call, which shutdowns
kernel and executes another one - even non-Linux kernel...

But, in the end, what's the problem? I know servers can have uptimes like several months
very easily, but is it really a problem to reboot your Windows-based desktop once a month
to have fixes installed?

I *always* have my PC set to download and notify before install. Woke up this morning to find that not only had the updates downloaded, but they had installed too, and Vista was prompting me for a re-boot. Upon checking my auto updates had reset to download and install. Something reset it, and that annoys me.