Microsoft is to release a patch to fix a “critical” security flaw affecting the Windows operating system.
The software giant refused to give any further details of the flaw ahead of its monthly security bulletin release on Tuesday (13 September 2005). Nor was there any indication that bugs recently discovered in Microsoft’s software by security experts would be tackled.
Earlier this month, eEye Digital Security warned of security flaws in the default installation processes for the Internet Explorer browser and the Outlook and Outlook Express e-mail clients affecting systems running Windows XP SP0 – SP1 and Windows 2000.
It is believed the bugs could allow hackers to take control of a user’s machine by taking advantage of a buffer overflow opening in the applications.
Last month’s “patch Tuesday” saw Microsoft release fixes for six bugs, including a critical security flaw in Windows. But several major companies were hit by the Zotob worm, which exploited a security flaw in Windows’ plug-and-play feature and spread a few days after the patch to correct the problem had been issued.
Microsoft said it would also release an updated version of its Windows Malicious Software Removal Tool and information on a series of high-priority non-security updates on Tuesday.