Microsoft Corporation has released three new software updates for their latest operating system Windows XP. Updates include the Java Virtual Machine as well as two other updates. Read more for details.
810030: Microsoft VM Security Update [Microsoft VM Build 3809]: Flaw in Microsoft VM JDBC Classes Could Allow Code Execution Impact of vulnerability: Three vulnerabilities, the most serious of which could enable an attacker to gain complete control over a user?s system. Maximum Severity Rating: Critical Recommendation: Customers should apply the patch immediately. Affected Software: Versions of the Microsoft virtual machine (Microsoft VM) are identified by build numbers, which can be determined using the JVIEW tool as discussed in the FAQ. All builds of the Microsoft VM up to and including build 5.0.3805 are affected by these vulnerabilities. Q328310: Security Update (Windows XP): Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation A security vulnerability has been identified that could allow an attacker to compromise a Windows-based computer and gain complete control over it. The attacker would need the ability to log onto the computer to carry out an attack. Available through Windows Update (english)
Flaw in SMB Signing Could Enable Group Policy to be Modified: A security vulnerability has been identified that could allow an attacker to disrupt a facility by which security settings are applied to Windows-based computers in a corporate network. This could allow the attacker to loosen settings on his or her own computer or impose tighter ones on someone else's. Download Update
810030: Microsoft VM Security Update [Microsoft VM Build 3809]: Flaw in Microsoft VM JDBC Classes Could Allow Code Execution Impact of vulnerability: Three vulnerabilities, the most serious of which could enable an attacker to gain complete control over a user?s system. Maximum Severity Rating: Critical Recommendation: Customers should apply the patch immediately. Affected Software: Versions of the Microsoft virtual machine (Microsoft VM) are identified by build numbers, which can be determined using the JVIEW tool as discussed in the FAQ. All builds of the Microsoft VM up to and including build 5.0.3805 are affected by these vulnerabilities. Q328310: Security Update (Windows XP): Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation A security vulnerability has been identified that could allow an attacker to compromise a Windows-based computer and gain complete control over it. The attacker would need the ability to log onto the computer to carry out an attack. Available through Windows Update (english)
Flaw in SMB Signing Could Enable Group Policy to be Modified: A security vulnerability has been identified that could allow an attacker to disrupt a facility by which security settings are applied to Windows-based computers in a corporate network. This could allow the attacker to loosen settings on his or her own computer or impose tighter ones on someone else's. Download Update
