Friday, December 16, 2005

Microsoft has released two new security bulletins

Microsoft has released two new security bulletins, one rated as critical and the other as important on the company's security rating scale.

The critical bulletin (MS05-054) includes a patch for Internet Explorer that addresses the 'zero day exploit' that has been discussed in the media over the last few weeks. Visiting malicious websites without this patch could allow attackers to take complete control of your computer. The MS05-054 patch addresses this issue, helps prevent three other new vulnerabilities, and also protects against the Sony rootkit vulnerability. Shavlik recommends installing this patch on all affected systems as soon as possible.

Microsoft's second bulletin, rated important, addresses a vulnerability in the Windows Kernel that could allow elevation of privileges on an affected system.

Below is more detail regarding the new Microsoft Security Bulletins:

Microsoft Security Bulletin MS05-054 (Critical) Cumulative Security Update for Internet Explorer (905915)

Microsoft Security Bulletin MS05-055 (Important) Vulnerability in Windows Kernel Could Allow Elevation of Privilege (908523)

Additional information about these Security Bulletins can be found at Microsoft's TechNet Web site: http://www.microsoft.com/technet/security/bulletin/ms05-dec.mspx

Further details on this security patch can also be found at the Shavlik Website: http://www.shavlik.com/support/bulletin_search.aspx

Shavlik recommends installation of these security patches as soon as possible in order to ensure networks are secure. Deployment is simple with Shavlik NetChk(TM) Protect, our new integrated patch and spyware management product. Handle two of the most persistent network problems through one console! For more information about Shavlik NetChk Protect, or to watch a live demo, click http://www.shavlik.com/netchk-protect.html.