It is patch Tuesday again, and Microsoft has released six major patches. Most noteably is the fix for the XML component that is used within all versions of IE, including 7.0. The vulnerability would enable an attacker to create a specially crafted website that could install malicious software on your system – and only Symantec had a signature for this last time I wrote about it.
Here are the list of patches released today:
· Microsoft Windows (MS06-066)
· maximum severity rating of Important
· Vulnerabilities in Client Service for NetWare Could Allow Remote Code Execution
· Microsoft Windows (MS06-067)
· maximum severity rating of Critical
· Cumulative Security Update for Internet Explorer.
· Microsoft Windows (MS06-068)
· maximum severity rating of Critical
· Vulnerability in Microsoft Agent Could Allow Remote Code Execution.
· Microsoft Windows (MS06-069)
· maximum severity rating of Critical
· Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution.
· Microsoft Windows (MS06-070)
· maximum severity rating of Critical
· Vulnerability in Workstation Service Could Allow Remote Code Execution
· Microsoft XML Core Services (MS06-071)
· maximum severity rating of Critical
· Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution .
Make sure you get those updates. They are just one part of your defense strategy.