Channel News and Analysis - Channel Insider

 


Convergence:
The Next
Security Wave
The convergence of physical and logical security isn't a new idea, but largely untapped by solution providers. Groups like 1nService and PSA Security are bringing these largely segmented channels together for this $7 billion market opportunity.
 

Seven MS Office, Windows Patches to Cover Critical Flaws

DATE: 2006-07-06
By Ryan Naraine

Article Rating:starstarstarstarstar / 0

Rate This Article:
Poor Best
Add This Article To:
Microsoft's July batch of patches will include critical fixes for bugs in Windows and Office; an Excel spreadsheet fix is expected.

Microsoft plans to release seven security bulletins on July 11 to cover a range of critical vulnerabilities affecting Windows and Office users.

Four of the seven bulletins will include patches for flaws in the Windows operating system, while three will deal with bugs in the Microsoft Office productivity suite.

eBay ends the bidding on a Microsoft Excel vulnerability. Click here to read more.

As is customary, the company is not releasing details on the vulnerabilities except to say that the updates will be detectable using the Microsoft Baseline Security Analyzer and the Enterprise Scan Tool.

Some of the updates will require a restart.

For advice on how to secure your network and applications, as well as the latest security news, visit Ziff Davis Internet's Security IT Hub.

The Microsoft Office patches are expected to include a fix for a known code execution hole in the Excel spreadsheet program.

That flaw is already being used in targeted attacks against an unidentified business interest, Microsoft confirmed.

The Excel attack includes the use of Trojan horse program called Trojan.Mdropper.J that arrives as an Excel spreadsheet with the file name "okN.xls."

When the Trojan is executed, it exploits the Excel flaw to drop and execute a second piece of malware called Downloader.Booli.A. It then closes Microsoft Excel.

The MSRC (Microsoft Security Response Center) has already acknowledged a second bug that uses embedded hyperlinks in Excel documents to exploit a Windows vulnerability. Detailed exploit code for that vulnerability has been released on the Internet.

Check out eWEEK.com's for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzer's Weblog.



Discuss Seven MS Office, Windows Patches to Cover Critical Flaws
 
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Channel News and Analysis Articles          >>> More By Ryan Naraine
 



 
CHANNEL DEEP DIVES
CareersLinux and Unix
Computer NetworkingPrinters
SecuritySMB Partner
StorageSurveys
Solution BuilderMessaging/Collaboration
Dell ResellersMicrosoft Partners

 
 

SIGN UP FOR CHANNEL INSIDER NEWSLETTERS
Reliable, timely information on the business of technology. Sign up now.

RSS SUBSCRIPTIONS
XML
Add Channel News, Product Reviews, Trends and Analysis to your RSS newsreader or My Yahoo!

ZDE Services
> Ziff Davis White Paper Library

> Baseline ROI Calculators

> eWEEK Labs RFPs and Tools

 
CHANNEL RESOURCE CENTER
HP StorageWorks Scalable NAS is highly available, scalable network-attached storage for any industry solution. To learn how you can take full advantage of fault-tolerant NAS that seamlessly scales capacity and performance, visit: http://www.hp.com/go/scalablenas


Feature Video: What Can Green Do For You?
There are many ways that systems can be run faster or more efficiently, using less energy and thereby reducing costs. Watch now!
Microsoft-hosted solution offers you advanced customer relationship management capabilities without a major investment in IT and staffing.
Try It for free for 30 days!
 

 
   Sponsored Links     
 

  • Check Point Security Appliance Trade in Promotion
  • Increase efficiency with Dell PartnerDirect
  • Avoid the crash. Arm your Road Warriors with SSD
  • Get FREE online training modules from BlackBerry.
  • Bundles with room to grow and room to go!
  • Free BlackBerry(R) Training Tour. Win a Smartphone.
  • Request a Novell/Microsoft deployment kit.
  • Improve the customer experience with Dialogue
  • Meet the demand for green technology with HP desktops
  • Download the “Best Antivirus Product of 2007”


    •    Channel Insider      Contact Us | Advertise | Site Map | VARs | System Builder
    eWEEK Quick LInks Storage Devices | Networking Security | Network Infrastructure | Wireless Networking | Database Management Systems | PC Desktops | Web Programming | Enterprise Solutions Linux Operating Systems | Mac Operating System | Mobile Messaging | Internet Telephony Microsoft Windows News | Google Watch | IBM Watch

    Ziff Davis Enterprise Home | Contact Us | Advertise | Link to Us | Reprints | Magazine Subscriptions | Newsletters
    Tech RSS Feeds | White Papers | ROI Calculators | Tech Video

    Baseline | Careers | Channel Insider | CIO Insight | DesktopLinux | DeviceForge | DevSource | eSeminars |
    eWEEK | Enterprise Network Security | LinuxDevices | Linux Watch | Microsoft Watch | Mid-market | Networking | PDF Zone |
    Publish | Security IT Hub | Strategic Partner | Web Buyer's Guide | Windows for Devices

    Developer Shed | Dev Shed | ASP Free | Dev Articles | Dev Hardware | SEO Chat | Tutorialized | Scripts |
    Code Walkers | Web Hosters | Dev Mechanic | Dev Archives | igrep

    Use of this site is governed by our Terms of Use and Privacy Policy

    Copyright ©1996-2008 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. Channel Insider is a trademark of Ziff Davis Enterprise, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise, Inc. is prohibited.