Solitary fix for first Patch Tuesday of 2010
Microsoft’s playing Scrooge with its first patch Tuesday of 2010, delivering only one fix.
According to the software giant’s security bulletin, the vulnerability affects all versions of Windows and is rated critical on Windows 2000 and low for all other platforms.
However, while the solitary fix may come as good news for busy admins, they’ll be considerably less cheerful about Microsoft admittance that it’s still working on a fix for the Denial of Service bug in SMB (Server Message Block) identified last November.
The bug allows attackers to lock up a system remotely, and affects Windows 7 and Windows 2008 R2.
“We are still working on an update for the issue at this time,” says Microsoft’s security program manager, Jerry Bryant.
“We are not aware of any active attacks using the exploit code that was made public for this vulnerability and continue to encourage customers to follow the guidance in the advisory which outlines best practices to help protect systems against attacks that originate outside of the enterprise perimeter,” he adds.
The single fix stands in stark contrast to Microsoft’s October Patch Tuesday, which brought 13 updates.