1/15/2006

Microsoft Ships First Vista Security Patches

Filed under: — By Aviran Mordo @ 9:14 am

Microsoft Corp. has shipped the first critical security update for Windows Vista, the next version of its flagship operating system.

Over the weekend, the company released patches for beta testers running the Windows Vista December CTP (Community Technology Preview) and Windows Vista Beta 1, and warned that the new operating system was vulnerable to a remote code execution flaw in the Graphics Rendering Engine.

A Microsoft spokesperson told eWEEK that the Vista patches address the same vulnerability that led to the WMF (Windows Metafile) malware attacks earlier this month.

Microsoft’s out-of-cycle security update for the WMF vulnerability makes no mention of Windows Vista being vulnerable, but with the release of this weekend’s patches it is clear that the poorly designed “SetAbortProc,” the function that allows printing jobs to be cancelled, was ported over to Vista.

Source: eWeek

 

Leave a Reply

You must have Javascript enabled in order to submit comments.

All fields are optional (except comment).
Some comments may be held for moderation (depends on spam filter) and not show up immediately.
Links will automatically get rel="nofollow" attribute to deter spammers.

Powered by WordPress