Patch Tuesday roundup and new Exploitability Index added

On Tuesday Microsoft released its monthly updates. This month saw 11 updates as well as a new way of rating them.

Microsoft calls it the "Exploitability Index" and has been added as a new table in the monthly security bulletin.
"The new rating scheme is designed to show more information which, aids customers in their risk management process" According to Steve Acerbate via the Microsoft Security Response Centre blog.

Out of the 11 patches this month 4 of them are rated the most severe "Critical" level. The deal with issues in Internet Explorer, Active Directory, Host Integration Server's Remote Procedure Call Service and Office Excel.

Internet Explorer bulletin deals with five issues that can be exploited if a user views a malicious Web page. The Excel bulletin fixes three vulnerabilities, including a formula parsing issue that is also considered a likely candidate for exploit code. The Host Integration Server vulnerability was declared likely to be exploited as well, and affects versions 2000, 2004 and 2006.

Six of the remaining bulletins were rated important, and address issues in the Microsoft Ancillary Function Driver, the Windows Kernel, Microsoft Server Message Block Protocol, Virtual Address Descriptor, Message Queuing and the Windows Internet Printing Service.

The final bulletin is rated "moderate" and fixes vulnerability in Microsoft Office that could lead to data disclosure.

Report a problem with article
Previous Story

Hp tells notebook OEM's not to deal with Asus

Next Story

Intel asks court for more time with EU charges

7 Comments

Commenting is disabled on this article.

Good updates, all installed flawlessly (XP Pro SP3). Though I was a bit surprised that the Silverlight 2 update wasn't on the list; I had to manually go to the website and update it myself. Ah well, no big deal.

for some reason after i did updates for this, normally my computer auto logs in and now it comes up to the login screen. not sure that any of the updates could have done that, however, it is rather odd that after i did the updates it starts to do that... and i only have one user.

I seem to have a problem after installing these updates.
Vista business
Excel2007

when I click on the ORB in Excel 2007 - Excel shuts down

weird