Microsoft warns of flaw in “critical” patch

News

Microsoft warns of flaw in “critical” patch

Tash Shifrin

Microsoft has admitted that flaws in a critical security patch issued earlier this month could leave some users unprotected.

The patch issued as part of Microsoft’s regular security bulletin on 11 October aimed to tackle a bug in DirectShow that could allow hackers to take complete control of an affected system, install programs, delete data or create new accounts with full user rights.

But the software giant has now issued a notice warning that computers “may not be updated” after installing the patch, if they are both running Windows 2000 and have DirectX 8.0 or DirectX 9.0 installed.

The notice warned, “In this scenario the computer is still vulnerable to the issue that is described in Security Update MS05-050. Additionally, when this symptom occurs, you do not receive notification that the computer is not updated.”

Microsoft has now updated the original security bulletin, with a revised version.


Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
 

COMMENTS powered by Disqus  //  Commenting policy