Thursday, March 16, 2006

Microsoft Patches Windows XP (Again)

Microsoft has published two updates for its products. The first of these, according to "Microsoft Security BulletinMS06-011", corrects an error through which an attacker could take control of the affected system.

The attacker could install programs with serious consequences, or carry out any type of task without the owner of the system realizing. The systems affected are Microsoft Windows XP Service Pack 1 andMicrosoft Windows Server 2003 (including the version for Itaniumsystems).

The updates to correct the error, along with further information, can be found at:http://www.microsoft.com/technet/security/Bulletin/ms06-011.mspx.

The second update, in bulletin MS06-012, corrects an error similar to the previous one, as it can also allow an attacker to take control of the system, in this case if the user starts a session as the administrator.

According to this second bulletin, the affected systems are Office 2000SP 3, Office XP SP 3, Office 2003 SP 1 or 2 and Microsoft Works Suites, from version 2000 to 2006. In addition, Office for Mac (Versiones X and2004) is affected.

Microsoft offers more information at:http://www.microsoft.com/technet/security/Bulletin/ms06-012.mspx.

We are stressing the seriousness of these problems, and reminding users that they should install the update as soon as possible. It is particularly important in this case, as by allowing the installation of programs, these vulnerabilities are the perfect scenario for the entry of new malware used in cyber-crime.