Microsoft Patches 8 Critical Vulnerabilities

Tue, Feb 10th, 2009

Microsoft Tuesday patched eight vulnerabilities -- three of them marked "critical" -- in the company's Internet Explorer (IE), Office, Exchange and SQL Server software.

The most serious of the flaws is a bug in Exchange that attackers can trigger simply by sending a specially-crafted message to a company's mail server.

In Tuesday's four security updates, Microsoft delivered fixes for the three critical flaws, as well as patches for five additional bugs it pegged as "important," the second-highest threat level in the company's four-step scoring system.

Several researchers put the Exchange update, MS09-003 , at the top of their list because of the likely attack vector. According to Microsoft, the critical Exchange vulnerability can be exploited when a user "opens or previews a specially crafted e-mail message sent in TNEF format or when the Microsoft Exchange Server Information Store processes the specially crafted message."

Our system thought this story was mainly about: Microsoft Patches, Vulnerabilities, Vulnerability
Have different ideas? Please tell us.
Share with friends if you like this page:
  1. February 12th, 2009 at 03:59

    why not just give up on them and move to google apps premier edition!