infosec-news January 2012 archive
Main Archive Page > Month Archives  > infosec-news archives
infosec-news: [ISN] Microsoft patches critical Windows drive-by

[ISN] Microsoft patches critical Windows drive-by bug

From: InfoSec News <alerts_at_nospam>
Date: Wed Jan 11 2012 - 10:33:44 GMT

By Gregg Keizer
January 10, 2012

Microsoft today shipped seven security updates that patched eight
vulnerabilities in Windows and a code library used to protect Web
applications from cross-site scripting attacks.

As experts expected, today Microsoft issued the patch it pulled at the
last minute in December 2011.

Only one of the seven updates was labeled "critical," Microsoft's
highest threat ranking; the others were marked "important." Of the eight
vulnerabilities, Microsoft classified seven as important, one as

MS12-004, which plugs two holes in Windows Media Player, was the
unanimous choice of security experts as the first update to deploy.


Did a friend send you this article? Make it your
New Year's Resolution to subscribe to InfoSec News!