Microsoft Plans to Patch Multiple Flaws in the Upcoming Patch Tuesday

Albuquerque, New Mexico (PressExposure) July 08, 2011 -- Recently, Microsoft released advance notification for the upcoming security update. The developer will issue four security bulletins patching multiple vulnerabilities associated with Windows Operating System and Office Suite. Vulnerability in Office Suite is associated with Microsoft Visio 2003. Microsoft will also release update for Malicious Software Removal Tool for Windows. The update will mitigate flaws associated with Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008 and Windows Server 2008 R2. The critical vulnerabilities in the forthcoming update are associated with Windows Vista and Windows 7 and are included in the first security bulletin. The developer has rated all the vulnerabilities covered by the second and third security bulletins as important. The fourth security bulletin deals with the issues in Office Suite considered important by Microsoft.

The developer rates those flaws as critical, which may allow attackers to disseminate worm without the need for any user intervention. Microsoft considers those vulnerabilities as important, which allow attackers to compromise the integrity, availability and confidentiality of user information or the integrity and availability of processing resources. The developer releases security update on every second Tuesday of the month. Software products are prone to vulnerabilities and security flaws. The vulnerabilities are discovered by in-house security teams, professionals affiliated to different security firms or independent security researchers. Developers follow different cycle for security updates. While Microsoft follows a monthly cycle, Oracle follows a quarterly cycle and Google has a much faster cycle of updates. Microsoft shares the vulnerability information with major security software providers prior to the each month's Patch Tuesday to enable them to provide enhanced protection to their customers.

Organizations must update operating systems, anti-virus programs and intrusion detection systems to safeguard networks and computers. Professionals qualified in IT masters degree [] and masters of security science may help organizations in identifying, prioritizing and implementing security updates. Coordinated effort is required to tackle the menace of cybercrime. Earlier this year, Microsoft initiated Microsoft Vulnerability Research Advisories (MSVR). The advisories pertain to security flaws associated with software products manufactured by other developers. However, Microsoft reveals these vulnerabilities only after the issue of security update by the concerned vendor except in cases where there is substantial evidence of exploitation of the said flaws in the wild.

Cybercriminals are always eager to exploit the vulnerabilities. They take advantage of negligence security practices as well the time lag between the release of an update and subsequent implementation by individuals and organizations. As such, proactive approach is required to combat different security threats. Security certifications and online technology degree [] programs may help IT security professionals in enhancing their capabilities and know-how to deal with sophisticated threats in the IT environment.

Computer users must regularly update software programs and anti-virus solutions to safeguard their systems and avoid exploitation of vulnerabilities by cybercriminals. E-tutorials and online computer degree programs may help employees and home computer users in enhancing their cyber security awareness.

About EC-Council

Tel: 505-341-3228

EC-Council University is based in Albuquerque, New Mexico and offers Master of Security Science (MSS) degree to students from various backgrounds such as graduates, IT Professionals, and military students amongst several others. The MSS is offered as a 100% online degree program and allows EC-Council University to reach students from not only the United States, but from all around the world.

EC-Council is a member-based organization that certifies individuals in cybersecurity and e-commerce skills. It is the owner and developer of 16 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and EC-Council Certified Security Analyst (ECSA)/License Penetration Tester (LPT). Its certificate programs are offered in over 60 countries around the world.

EC-Council has trained over 80,000 individuals and certified more than 30,000 members, through more than 450 training partners globally. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. federal government via the Montgomery GI Bill, Department of Defense via DoD 8570.01-M, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates the global series of Hacker Halted security conferences.

Press Release Source:

Press Release Submitted On: July 08, 2011 at 9:08 am
This article has been viewed 10287 time(s).