Skip to main content

Microsoft pushes patches out of the door

Microsoft (opens in new tab) sent a number of patches for Windows Vista and for Windows XP yesterday as part of the monthly Patch Tuesday.

Two security patches solved vulnerabilities on Windows with one of them - MS08-001 - labelled as critical by Microsoft.

The code (opens in new tab) "resolves two privately reported vulnerabilities in Transmission Control Protocol/Internet Protocol (TCP/IP) processing. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights."

The problem affects all version of XP, Vista, Windows Server 2003 and Windows 2000.

Another vulnerability - MS08-002 - affects the Windows Local Security Authority Subsystem Service (LSASS (opens in new tab)) and "could allow an attacker to run arbitrary code with elevated privileges. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights."

Microsoft has also released five other important updates as well as a new version of its "Windows Malicious Software Removal Tool."

Désiré Athow
Contributor

Désiré has been musing and writing about technology during a career spanning four decades. He dabbled in website building and web hosting when DHTML and frames were en vogue and started writing about the impact of technology on society just before the start of the Y2K hysteria at the turn of the last millennium. Following an eight-year stint at ITProPortal.com where he discovered the joys of global tech-fests, Désiré now heads up TechRadar Pro. Previously he was a freelance technology journalist at Incisive Media, Breakthrough Publishing and Vnunet, and Business Magazine. He also launched and hosted the first Tech Radio Show on Radio Plus.