Microsoft's latest security patch update, issued yesterday,
includes five critical security fixes, of which three require the
user to reboot their PC. One of the patches may cause applications
to fail.
Software compatibility specialist ChangeBase has tested the
patches using its Application
Compatibility Lab and found 90 issues relating to the
MS09-014 patch, which fixes four privately reported
vulnerabilities and two publicly disclosed vulnerabilities in
Internet Explorer.
According to Microsoft, the vulnerabilities could allow remote
code execution if a user views a specially crafted web page using
Internet Explorer or if a user connects to an attacker's server by
way of the HTTP protocol. Users whose accounts are configured to
have fewer user rights on the system could be less affected than
users who operate with administrative user rights.
ChangeBase said the MS09-014 patch affects Browseui.dll,
Danim.dll, Dxtmsft.dll, Iecustom.dll, Iepeers.dll, Inseng.dll,
Jsproxy.dll, Mshtml.dll, Msrating.dll, Pngfilt.dll, Shdocvw.dll,
Shlwapi.dll, Url.dll, Urlmon.dll, Wininet.dll, Iecustom.dll.