This is old news by this point but, I just got off the plane. Microsoft has inundated us with a raft of patches…again. This monthly pain in the butt weighs heavily on IT departments as they have to drop everything in many companies and test/rollout these patches. The amount of heavy lifting involved is getting painful to bear. It has gotten to the point where a lot of smaller businesses are entertain open source and Unix alternatives. This is not to say that this will solve their problems but, the amount of care and feeding required for Microsoft environments is rising at an alarming rate.
The six ‘critical’ vulnerabilities include four in Office and two in Windows. One of the Windows bugs was in the Windows Shell that has a publicly available exploit.
Security firm Secunia said that the exploit could be deployed through a specially crafted web page.
The other ‘critical’ Windows vulnerability addresses the system’s XML handling which, according to Secunia, could also be exploited through a maliciously crafted web page.
Alternative browsers as well have to be examined. I’m not going to sit here and rant that Firefox is better than IE et cetera. Rather, companies as well as home users have to weigh the benefits of other browsers to help secure their systems.
When will the Microsoft security posture turn around?
[tags]Microsoft Security, Patch Tuesday, Micosoft Exploits, Secunia[/tags]
