Home Messages Index
[Date Prev][Date Next][Thread Prev][Thread Next]
Author IndexDate IndexThread Index

[News] [Rival] Microsoft Lying About Number of Patches Again?

  • Subject: [News] [Rival] Microsoft Lying About Number of Patches Again?
  • From: Roy Schestowitz <newsgroups@xxxxxxxxxxxxxxx>
  • Date: Thu, 12 Jul 2007 16:19:48 +0100
  • Newsgroups: comp.os.linux.advocacy
  • Organization: Netscape / schestowitz.com
  • User-agent: KNode/0.10.4
Microsoft fixes 11 vulnerabilities - 8 'critical' - on Patch Tuesday

,----[ Quote ]
| Microsoft released six patches covering 11 vulnerabilities on 
| July's Patch Tuesday, including "critical" fixes impacting 
| Active Directory on Windows 2000 and 2003 Server and .Net 
| Framework products. In all, Microsoft rated eight of the 11 
| now-patched vulnerabilities as critical.
`----

http://scmagazine.com/us/news/article/670183/microsoft-fixes-11-vulnerabilities-8-critical-patch-tuesday/

They said it would be just 3, not 8. 

Numbers vary, but it's always more than 3 "critical" vulnerabilities:

http://softsupplier.com/blog/7-critical-vulnerabilities-patched/

http://www.heise-security.co.uk/news/92511

http://www.computerworlduk.com/technology/operating-systems/windows/news/index.cfm?newsid=3960


Related:

Microsoft patches Active Directory flaw

,----[ Quote ]
| The MS07-039 Active Directory update, which is for Windows 2000 Server and 
| Windows Server 2003 systems, should be at the top of enterprise IT 
| administrators' lists, said Eric Schultze, chief security architect with  
| Shavlik Technologies. "That one scares me because those are the crown jewels 
| there. And it looks like you're caught with your pants down at the moment."   
|
| [...]
|
| The flaw deals with the way Active Directory processes LDAP client requests. 
| Attackers could create a malicious LDAP request that would then allow them 
| to "take complete control of an affected system," Microsoft warned in its 
| advisory on the flaw.   
`----

http://news.yahoo.com/s/infoworld/20070710/tc_infoworld/90096


Skeletons in Microsoft’s Patch Day closet

,----[ Quote ]
| This is the first time I’ve seen Microsoft prominently admit to silently 
| fixing vulnerabilities in its bulletins — a controversial practice that 
| effectively reduces the number of publicly documented bug fixes (for those 
| keeping count) and affects patch management/deployment decisions.   
`----

http://blogs.zdnet.com/security/?p=316


Beware of undisclosed Microsoft patches

,----[ Quote ]
| Forget for a moment whether Microsoft is throwing off patch counts 
| that Microsoft brass use to compare its security record with those 
| of its competitors. What do you think of Redmond’s silent patching 
| practice?
`----

http://blogs.zdnet.com/microsoft/?p=527

[Date Prev][Date Next][Thread Prev][Thread Next]
Author IndexDate IndexThread Index