Wednesday, December 10, 2008

December 2008 Patch Tuesday, Take Two

What Is It?

Yesterday, in the notice that I distributed to VirusWarn subscribers, and published on the VirusWarn Blog, at http://viruswarn.blogspot.com/2008/12/fw-viruswarn-there-is-something-for.html, I neglected to include two key products that require your immediate attention.

  • Microsoft Office 2003. Both Word and Excel received patches to plug several remote code execution vulnerabilities. Even if you don't use Word or Excel, you need this update if Outlook is configured to use Word as its message editor. In this version of Outlook, this setting is optional.
  • Microsoft Office 2007. Both Word and Excel received patches to plug several remote code execution vulnerabilities. Even if you don't use Word or Excel, you need this update if Outlook is configured to use Word as its message editor. In this version of Outlook, this setting is the default.
In case you have forgotten, or didn't know, remote code execution vulnerabilities are the currently favored means by which the Bad Guys install malicious software onto your computer.

What Should You Do?

Unless you know for certain that the updates for Office 2003 or 2007 installed themselves yesterday or today, visit the Microsoft Update Web site, at http://update.microsoft.com/, choose the Express option, and accept everything that is offered.

Attention Firefox users. You must use Internet Explorer for this task.

References

Thank You!

Thanks to long time subscriber Sara Jenkins for calling my attention to this oversight, and to the fact that the Microsoft Update service requires Internet Explorer.

David Gray, MBA, Chief Wizard
WizardWrx – Making computer magic since 1985

WizardWrx Logo

+1 (817) 812-3041
TZ: USA Central
http://www.wizardwrx.com/

4835 North O'Connor Road
Suite 200
Irving, TX 75062-2742
USA

Tell me what you need, and I’ll conjure it.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)