09.04.09
Gemini version available ♊︎Eye on Microsoft: Many More “Critical” Windows Flaws, Attacks on IIS Reported
Summary: Short summary of security news
• MS fuels up five critical Windows fixes
Microsoft plans to release five critical update bulletins next Tuesday, all critical, in the September edition of its regular Patch Tuesday update cycle.
• Microsoft reports attacks using IIS vulnerability [the vulnerability that we mentioned yesterday]
Microsoft disclosed the Internet Information Services (IIS) vulnerability on Monday and said Friday it’s still working on a security update to fix the problem. In the meantime, the advisory has instructions for a workaround, including disabling various elements of the vulnerable FTP (File Transfer Protocol) service to upload and download files.