A
security patch issued by Microsoft yesterday could cause
enterprise software to fail.
ChangeBase,
which
makes application compatibility testing software, assessed the
latest patches from Microsoft. It found that
the Microsoft Security Bulletin MS08-045 patch, which provides
a cumulative security update for Internet Explorer 7.0 (IE7), could
affect enterprise applications that use the patched component in
Microsoft's web browser.
Greg Lambert, technology director, ChangeBASE AOK, said: "The
results of our tests show many applications have dependencies on
the Security update for IE7 - for example versions of WinZip,
Novell Client and Oracle applications."
The security patch, issued as part of Microsoft's monthly Patch
Tuesday update, fixes six security holes in Internet Explorer. The
vulnerability could be exploited by a hacker to run remote code on
a user's PC by luring the user to a hacked web page.
Greg Lambert urged users to test the parts of these applications
that use the elements of IE7 affected by the latest Microsoft
patch.
The company has developed a tool called
Aok Patch
Impact, which it says can determine dependencies and
application links in Microsoft patches.