Eye on Microsoft: Many More “Critical” Windows Flaws, Attacks on IIS Reported
- Dr. Roy Schestowitz
- 2009-09-04 22:45:26 UTC
- Modified: 2009-09-05 01:36:53 UTC
Summary: Short summary of security news
●
MS fuels up five critical Windows fixes
Microsoft plans to release five critical update bulletins next Tuesday, all critical, in the September edition of its regular Patch Tuesday update cycle.
●
Microsoft reports attacks using IIS vulnerability [the vulnerability that we
mentioned yesterday]
Microsoft disclosed the Internet Information Services (IIS) vulnerability on Monday and said Friday it's still working on a security update to fix the problem. In the meantime, the advisory has instructions for a workaround, including disabling various elements of the vulnerable FTP (File Transfer Protocol) service to upload and download files.