Tags: patch | tuesday | microsoft | security

Patch Tuesday: Microsoft Unearths 59 Vulnerabilities in Monthly Checkup

By    |   Wednesday, 11 Jun 2014 10:32 AM

Microsoft's Internet Explorer got a major overhaul this week with 59 fixes announced by the company during its monthly "Patch Tuesday" update.

Patch Tuesday is Microsoft's regularly scheduled security update that occurs the second Tuesday of each month, according to PCWorld.com. The software giant sends out a bulletin advance notification three business days before the regular security update is released, giving a summary of the fixes.

Microsoft announced that it plans on conducting a webcast at 2 p.m. EST on Wednesday to answer customer questions about the repairs.

Jane McCallion, of PCPro.com, wrote that a majority of Microsoft's fixes were important vulnerabilities that customers did not know about before.

"According to Microsoft, MS14-035 deals with two publicly disclosed vulnerabilities and 57 that were not yet widely known about," she wrote. "The company said the most severe of the bugs patched by MS14-035 allows remote-code execution following a waterholing attack, where a user visits a malicious website designed to target a specific group of people."

Microsoft wrote in its bulletin that the cumulative security update to Internet Explorer was particularly important to prevent such rogue attacks.

"An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user," Microsoft said in the memo. "Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights."

Wolfgang Kandek, chief technology officer of security vendor Qualys, told PCWorld.com that the high number of fixes is likely because Microsoft has become better at spotting problems before they are exploited.

"While a total of 59 vulnerabilities for a single piece of software is eye-opening, the large number may be due to increased use of sophisticated scanning tools, rather than any unusual weakness of the IE code itself," he told the tech site.

"[Zero Day Initiative] unearthed 22 of the patches, including five that were found through [Hewlett Packard's] Pwn2Own contest in March. Another 23 vulnerabilities were found by four researchers at Qihoo, a Beijing security company," PCWorld noted.

© 2017 Newsmax. All rights reserved.

 
1Like our page
2Share
TheWire
Microsoft's Internet Explorer got a major overhaul this week with 59 fixes announced by the company during its monthly Patch Tuesday update.
patch, tuesday, microsoft, security
341
2014-32-11
Wednesday, 11 Jun 2014 10:32 AM
Newsmax Inc.
 

Newsmax, Moneynews, Newsmax Health, and Independent. American. are registered trademarks of Newsmax Media, Inc. Newsmax TV, and Newsmax World are trademarks of Newsmax Media, Inc.

NEWSMAX.COM
America's News Page
© Newsmax Media, Inc.
All Rights Reserved