Microsoft Readies 5 Critical Windows Updates for Patch Tuesday
Microsoft is preparing to release five critical security bulletins Sept. 8 for Patch Tuesday. The five bulletins target vulnerabilities in Microsoft Windows, and do not include a fix for a bug affecting Internet Information Services the company has warned about.Microsoft is prepping five critical security bulletins for the Patch Tuesday release Sept. 8. All five are classified as remote code execution vulnerabilities in Microsoft Windows. The bulletins cover various editions of the operating system, ranging from Windows 2000 to Windows Server 2008.
Though Microsoft offered few details regarding the bulletins, the company did say a fix for the IIS (Internet Information Services) FTP service vulnerability made public Aug. 31 is not included in the mix. The IIS bug is a buffer overflow vulnerability in the FTP server in IIS 5.0 and 6.0 that allows remotely authenticated users to execute arbitrary code via a crafted NLST command that uses wildcards.