Record number of MS security issues this month
Out of 34 security weaknesses identified, including one for Windows 7 OS, 22 were rated as critical
Microsoft has had a record number of security vulnerabilities addressed this month, including its first ever security update for the release-to-manufacturing (RTM) version of the new Windows 7 operating system.
The tech giant issued 13 security bulletins in October which address 34 vulnerabilities, 22 of which are rated as ‘critical' such as those that allow hackers to execute code and take over PCs running Windows operating systems up to Windows 7.
It's the highest number of vulnerabilities addressed in a single month by Microsoft - the previous record was 31, set in June of this year.
"For October we are releasing 13 bulletins (eight critical and five important), addressing 34 vulnerabilities, affecting Windows, Internet Explorer, Office, Silverlight, Forefront, Developer Tools, and SQL Server. Most of these updates require a restart so please factor that into your deployment planning," writes Jerry Bryant in a blog post for the Microsoft Security Response Center. "... we felt that it is important guidance so customers can plan accordingly and deploy these updates as soon as possible."
The update for the Windows 7 RTM disables faulty ActiveX controls created by the Active Template Library.
"The update that addresses vulnerabilities in Windows 7 relates to the Active Template Library issues Microsoft has been working on for a number of months now," said Ben Greenbaum, senior research manager at Symantec Security Response. "It essentially disables additional faulty ActiveX controls created using the library that have been distributed across Windows users' machines."
Enterprises are advised to consider implementing an automated patch management solution to help reduce risk, while all Windows customers are recommended to install the latest patches on their system to avoid any potential security issues.