IE update top priority for Patch Tuesday


IE update top priority for Patch Tuesday

Warwick Ashford

Microsoft is to release nine bulletins addressing a total of 21 vulnerabilities in its monthly Patch Tuesday security update on 14 February, according to the company’s advance notification.

Four bulletins are classified as "critical,” including an update for Internet Explorer. The remaining five are classified as "important".

The update to Internet Explorer should be the highest priority, according to Wolfgang Kandek, chief technology officer (CTO) of security firm Qualys.

“We saw last month how quickly attackers are incorporating browser-based attacks into their toolkits; an exploit for MS12-004 was detected a mere 15 days after Patch Tuesday,” Kandek said.

There are also two critical fixes for Windows itself, plus one for the .NET framework that should be prioritised, wrote Kandek in a blog post.

In the "important" category, there are three remote code execution vulnerabilities, one of them in Office.

“Most likely we are looking at file-based attacks and at least the Office vulnerability should be included in your first tier of patching,” said Kandek.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy