Microsoft issues 51st security bulletin of the year

[InfoSec News <isn () c4i org>]

http://www.nandotimes.com/technology/story/544944p-4305410c.html

[Almost one and a half vulnerabilities a week for those of you keeping
score at home. Makes you wonder how much longer it will be before
"Trustworthy Computing" will show up on the Oxymoron list?
http://www.oxymoronlist.com/  - WK]

-=-

REDMOND, Wash. (September 21, 2002 5:51 p.m. EDT) - Microsoft Corp. on
Thursday disclosed more flaws in its Windows operating systems, the
most serious of which could let an outside attacker take over a
computer.

The software company advised that all users of Windows install a free
patch to fix flaws in its "virtual machine" for translating
applications written in the Java programming language. Microsoft
termed the threat "critical."

Microsoft also disclosed "moderate" flaws in Windows 2000 and XP and
advises administrators of Windows 2000 servers and end users of
Windows XP to download a patch. The flaws involve a failure to encrypt
certain kinds of data and an error that causes Windows XP to fail when
sent certain kinds of bad data.

The flaws, detailed on Microsoft's Web site, are the company's 51st
and 52nd security bulletins of the year.




-
ISN is currently hosted by Attrition.org

To unsubscribe email majordomo () attrition org with 'unsubscribe isn'
in the BODY of the mail.