This month’s patch activity involves four security bulletins which address five vulnerabilities in Windows and Microsoft Office.
The Microsoft Update process will automatically determine if you have software installed that requires any or all of the following, so there’s no need you to agonise over which to apply and which to ignore.
However, just so you know, the four bulletins for this month, along with the Microsoft’s severity classification of each, are:
MS10-042 (CRITICAL): Addresses an issue in the Windows Help and Support Center feature of Windows XP and Windows Server 2003. Windows XP users in particular should make installing this update a priority.
MS10-043 (CRITICAL): This bulletin will affect very few of my readers, as it applies only to 64-bit versions of Windows 7 and Windows Server 2008 R2 with Windows Aero enabled.
MS10-044 (CRITICAL): If you have Microsoft Office Access 2003 or 2007 installed this patch is rated Critical for you.
MS10-045 (IMPORTANT): A must-apply for anyone using Microsoft Outlook 2002 or 2003, or Microsoft Office Outlook 2007.
Background
On the second Tuesday of each month Microsoft releases software patches & updates for their various products, so this is a very important day for all Windows users who care about their privacy and security [full summary here].
Why? Well..
Often a Microsoft patch or update will close a vulnerability that, if left un-addressed, could allow an attacker to take complete control of your computer.
And that’s something you REALLY don’t want!
Keeping your installation patched up-to-date is so important that, whether or not you have Automatic Updates enabled, at this time of each month it’s still wise to manually double-check that everything that matters has been installed. Don’t be put off by the word “manually” — it’s a quick and easy process.
HERE’S HOW…
- Point your web browser to: http://www.update.microsoft.com
- Click the Custom button.
- Install any high-priority updates that are reported.
But Don’t Stop There!
In the column on the left-hand side you will see links for:
- Software, Optional (n)
- Hardware, Optional (n)
The number in brackets indicates how many updates of that type are applicable to your computer. If the number is anything other than (0) then click that link and investigate, installing the update if necessary (or if in doubt). Similarly, you may find relevant updates in one of the links under “Select by Product”, so do the same with any of those.
WEBCAST:
Each month, in association with Patch Tuesday, Microsoft presents an online Webcast to address customer questions on the bulletins for that month. Webcasts are usually initially presented on the Wednesday, the day after Patch Tuesday, at 11:00 AM Pacific Time (US & Canada). They are also recorded and available for later viewing. To register for a Webcast or to view Webcasts that have passed, click this link.
By the way, if you’re not in the US/Canadian Pacific Time Zone, SymmTime is a great on-screen world time utility for converting times around the world. It’s free and highly configurable.
Did you know…
Many of the malware threats that you are frequently warned about in the various news and information media, on and off-line, should never be the slightest threat to you.
How come? Well, because…
If you made a habit of applying the patches & updates that are issued by Microsoft every month, you would be IMMUNE from infection by many of the tens of thousands of threats currently circulating on the Internet, with more being churned out by the cyber-grubs on an almost daily basis.
The vast majority of these threats get into your computer by exploiting some known vulnerability in Windows. When one of these vulnerabilities is patched by Microsoft, the threat becomes benign — but only if you have applied the free patch to your version of Windows.
So remember…
You Ignore Patches & Updates at Your Peril!
PS: When you read some of the related articles below you will encounter numerous instances of “Microsoft recommends updating Internet Explorer to version 8″ and “Microsoft recommends avoiding blah blah blah” and etc. Listen up! You’ll be orders of magnitude safer if you take my advice instead — download the free Firefox browser and give Internet Explorer the flick. IE has been a real security problem for a long time and it’s going to continue to be so well into the future. Firefox is a far better browser in every respect.
Related articles:
- Microsoft Security Updates & Farewell to Windows XP Service Pack 2
- Microsoft Fixes Critical Bugs in Windows, Office
- Microsoft Issues Four Security Bulletins
- Microsoft To Patch 4 Critical Bugs On July 13
- MS Patch Tuesday: Googler Zero-Day Fixed in 33 Days
- Microsoft plugs critical Windows, Office holes
- Patch Tuesday & XP SP2 end of life
- With Fix Now Out, Microsoft Sees Jump in XP Attacks
