Slashdot Mirror

← Back to Stories (view on slashdot.org)

Patch Tuesday — IE7 Clean

Posted by kdawson on from the patchwork-quilt dept.

jginspace writes "As per the advance notification, Microsoft's monthly security bulletin, released yesterday, addressed five general Windows issues and one in Visual Studio. It also included a fix for a problem in Outlook Express for a total of seven updates. As patch Tuesdays go it was fairly unremarkable. The only general Windows update labeled 'critical' is for a flaw in Media Player. As usual, there's a cumulative update for Internet Explorer, but significantly, the only versions of IE affected are 5 and 6. Version 7 is clean — which is welcome news in this first update since the upgrade was pushed to the world last month. Microsoft was silent on the two zero-day Word holes, one reported here and a new one. Sans is calling this 'Black Tuesday' and recommends patches be applied urgently for the Visual Studio and Media Player vulnerabilities. Sans is recommending the Heise Offline Update utility covered in a previous story."

4 of 75 comments (clear)

  1. But I installed Outlook Express 2 years ago? by Anonymous Coward · · Score: 1, Interesting

    I uninstalled Outlook Express around 2 years ago using "Add/Remove Windows Components".

    However, Windows/Microsoft Update keeps applying patches for "Outlook Express".

    I'm sure that if I searched my drive for Outlook Express (or the correct search pattern), I would find that Windows never really uninstalled Outlooked Express. Lies lies lies!

  2. IE7 not clean: Secunia shows 3 unpatched holes by free2 · · Score: 5, Interesting

    IE7 is not clean: Secunia shows there are 3 unpatched holes:
    http://secunia.com/product/12366/?task=advisories_ 2006

  3. Handy tool - Check for insecure software by mmbokaj · · Score: 2, Interesting

    Secunia released a new tool last week. You can use this to verify that you have the latest secure versions of software installed, including MS updates. http://secunia.com/software_inspector/

  4. Re:Alright everyone, show's over by chrisbro · · Score: 2, Interesting

    Seriously, has the situation come to a place for Microsoft where a month with no patches for IE is actually news?

    Yes. This thing had systems administrators running because of the forced upgrade and general wariness. Now that it's being proven that it won't wreak havoc on corporate systems, I figure some BOFHs will start to ponder a roll-out after blocking it. If it proves in the short-run to be more secure than IE6 (which isn't saying much, of course), they might jump on it.

    As much as /. (justifiably) trashes Microsoft vulnerabilities, it's good to see the editors post a story that goes against the grain. Even if it should be read with a curiously raised eyebrow rather than cheers of jubilation.