Remote exploit error record in Microsoft security bulletin

The US software group has released patches for 21 software vulnerabilities, of which only two issues do not allow attackers to handle malicious code on users' computers.

Picture 1 of Remote exploit error record in Microsoft security bulletin Of these, eight were classified as "serious", Microsoft's highest risk warning level, and affected Windows, Internet Explorer, Word, PowerPoint and Exchange Server.

" Microsoft has never announced 21 errors and never encountered 19 vulnerabilities in remote attacks ," said Amol Sarwate, an analyst with Qualys security company. .

The most important newsletter, MS-025 , fixes routing errors and remote access in Windows, enabling hackers to track traffic through connection ports. Systems that operate on Windows 2000 operating systems are the worst affected, while Windows XP Service Pack 1 - 2 and Windows Server 2003 Service Pack 1 are slightly affected.

The second patch MS06-029 upgraded Microsoft Exchange Server on Outlook Web Access. " Network administrators need to note this error, although it is rated 'important', because when checking messages through Outlook Web Access, users just need to open the e-mail and can activate the code in Letter and under control ", Sarwate warns.

Four other updates deal with serious vulnerabilities, involving all versions of Windows. MS06-021 handles errors in Internet Explorer 5.01 and 6 browsers , while MS06-024 troubleshoot Windows Media Player 7.1, 9 and 10. The MS06-023 message addresses Microsoft Jscript and MS06-022 lifting issues. grant the ability to display ART images.

Meanwhile, MS06-026 addresses the graphics engine error of the operating system, but is only really serious with Windows 98, Windows 98 Second Edition (SE) and Windows Millennium Edition (ME).

Two versions of the World text processor ( MS06-027 ) and PowerPoint ( MS06-028 ) of Office office package are also set at the highest warning level.

Through the MS06-030 security newsletter, Microsoft fixed the problem of a Windows Server Message Block (SMB) component, helping hackers take precedence over the system. The other two bulletins, ranked "average", update RPC Mutual Authentication ( MS06-031 ) and TCP / IP ( MS06-032 ) in Windows.

Over the weekend, Microsoft warned that customers would have to face security risks if they continued to use older operating systems.

Windows 98 and Windows ME are currently experiencing serious errors during processing Component Object Model objects. An attacker can control the system after tricking users into accessing a website that contains malicious code and connecting the computer to a remote server. "We cannot deploy patches on Windows 98 and ME because they can cause problems for the operating system," a Microsoft spokesman said.

Microsoft plans to stop upgrading and will not release more patches for Windows 98, Windows 98 Second Edition and Windows Millennium starting July 11. Bill Gates' software group advises users to set up a firewall to filter through TCP 139 ports. In addition, it will officially stop supporting Windows XP Service Pack 1 from 10/10.

Another notable event this week is that Mozilla suddenly announced that the Firefox 3.0 browser, due out next year, will not support Windows 98 and Windows Millennium . The decision of this open source software organization caused no controversy. "Mozilla products are still compatible with some operating systems with fewer users than Windows 98 and ME users. If they want to stop support, they should conduct a market share survey first." , Hermann Schwab member reflected on the Bugzilla website.

TN synthesis