- SandBox Information Center
- Malware Analysis Search
- Articoli sulla sicurezza
- Blog sulla sicurezza [EN]
- Livello di pericolosità [EN]
- Minacce attuali di virus
- Tipi di malware [EN]
- Descrizione dei virus [EN]
- Statistiche sulla posta elettronica [EN]
- Testi, white paper generici ed altro
- La tecnologia Norman
Three critical updates for Microsoft systems in July 2009
27 July 2009
In its security bulletin summary for July 2009 Microsoft has published three updates for critical vulnerabilities in its operating systems / applications, as well as three important.
Critical is Microsoft’s highest vulnerability rating.
A summary describing briefly the vulnerabilities is available from Microsoft’s Security Bulletin Summary for July 2009.
From this page you will also find links to more detailed information in Microsoft's Security Bulletins MS09-028 - MS09-033.
The critical update addresses the following issues:
- Two privately reported vulnerabilities in the Embedded OpenType Font Engine.
- One publicly disclosed and two privately reported vulnerabilities in Microsoft DirectShow,
- One privately reported vulnerability in Microsoft Video ActiveX Control (the Kill Bits).
The Kill Bits vulnerability is currently being exploited, and this update is therefore presumably the most criticail one to deploy.
Updates that fixes the vulnerabilities are available from Windows automatic update mechanism for systems that support this. Alternatively, one may download updates from http://windowsupdate.microsoft.com.
Norman advices all affected users to download the security updates as soon as possible, to be protected from potential exploits.