Comments on: Microsoft fixes 26 flaws with 11 patches; six are critical

Updates affect Microsoft Office suite and individual applications as well as Internet Explorer.

[The_happy_switcher]

Time for the Windows weekly turd polish.

[rapier1]

So what is it when Apple releases security updates, extra gilding on the lily?

[DrtyDogg]

Actually it's monthly

[Dalkorian]

As DrtyDogg alluded to, it's more like "that time of the month" for M$ fans.

[dragonstar125]

no prioblems installing them nothing hickup so far.... but total of 14 is alot thru.......figers corssed....

[Gasaraki]

Thanks for the info.

[Vegaman_Dan]

Obviously this indicates that Microsoft is a complete and utter failure. The company is going out of business and will be selling out to Apple and RedHat shortly.

Just beating Penguinisto to the punch. It's what he says about every MS story anyways.

[The_happy_switcher]

Thanks for describing my ultimate wet dream.

[Penguinisto]

Nah - MSFT won't die yet... it'll die slowly.

Meanwhile, where's the patch for the MSSQL flaw that has several thousand (and counting) MSSQL-based websites working as malware pumps? Inquiring minds want to know...

[Penguinisto]

Sorry Danny, but I was too busy watching the web congestion and multiple errors @ the windows update site while patching the one Win2k3 server I have left in the joint. ;)

/P

[Vegaman_Dan]

Wait a moment... you bragged previously about having ridden your multi-billion dollar world leading book publisher of all Windows servers and replaced them with Linux boxes. I'm confused- now you say you have a Win2k3 server? Your contradicting your own previous claims. Which story do you want to go with? You can't have both.

And it's not hard to update the server. Simply hit that ol' Windows Update option. If you are having trouble with your network, you may want to talk to your system administrator about the state of your network. I'm sorry to hear you are having multiple errors with your internal network. I know you are limited by what the company allows you to do. Perhaps you can use this as a reason to get your system updated and repaired.

[Penguinisto]

Never said that - I said that I've been busy ridding my organization of Windows servers, and that I had it down to just a handful (at the time). I'm now down to one, which runs NetBackup.

Maybe you should study that which you obsess over (or at least pay attention more closely ;) ).

[The_Decider]

MS can patch IE all it wants but it is still a very viable attack vector, and that is by design(what a surprise, insecure by design).

http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1324395,00.html

Funny how the coverage of BlackHat by CNET missed this. Must have been an oversight...

[Lerianis]

IE6 and earlier were insecure by design. IE7 and IE8 are pretty damn secure by design, if you are running them on Windows Vista (which you should be doing by now).

[The_Decider]

I see you didn't read the article the link posts to.

It is NOT secure.

[frankwick]

The past few months have been low volume for updates. This is a catch up month!

[AgentSTS]

Peng,

That fix is called "SQL-101 - Software designers that have not read SQL for Dummies, Chapter 2, regarding elementary SQL injection attacks may cause wide open database access for any script kiddie to corrupt with the cyber-V.D. du jour. This vulnuability also affects Jobs' knob polishers and those that dream in 'console'."

[Penguinisto]

I wouldn't know - I use MySQL and PostgreSQL, which manage to do the job quite nicely in most cases, and without spending $$$ for CALs. For anything industrial, Oracle seems to work just fine, thanks much.

Meanwhile, MSSQL users get pwned by the thousands...

[JCPayne]

Does M$ announcing a new gargantuan web of patches actually make you feel any safer???

[benjaminstraight]

Yeah what's new.

[DawnClifton]

We have done some research on this month?s Microsoft Patch updates and have run them through our Application Compatibility Lab (ACL) which uses our AOK Workbench tool to analysed each of the patches. We found that most of the updates should not cause too many application issues. However, it looks like MS08-045, the IE 7 Security update may cause issues due to application dependencies on Internet Explorer 7. For further information, have a look at the our company report issued this morning; http://www.changebase.com/news_release_13_08_08.html

[acousticb1]

I know they do. I think they also when you try to remove them mess up aps

[acousticb1]

oh geeze . I am worried everytime there is a MS update they screw up something and it messes up computers.

[Lerianis]

They don't screw jack up. Usually, it is that some idiot programmer has coded a piece of software in a 'weird' way so when Microsoft updates to fix problems with a piece it uses.... the software in question chokes.