Security
|
Written by Daniel
|
Wednesday, 09 September 2009 12:20 |
The September patch set from Microsoft has fallen a bit short, leaving three zero-day vulnerabilities open to be exploited
By Thomas Claburn InformationWeek September 8, 2009 05:25 PM
Microsoft (NSDQ: MSFT) on Tuesday released five Security Bulletins addressing eight vulnerabilities, but left three zero-day vulnerabilities untended. Paul Henry, forensic and security analyst for Lumension, said in an e-mail that the three zero-day vulnerabilities need to be addressed soon. Two are IIS vulnerabilities that were made public when exploit code was posted online about a week ago. The third is a vulnerability affecting Microsoft SMB2, for which exploit code was posted on Monday. [Comments...]
|