Microsoft’s latest patches address 26 flaws


10 Feb 2010

Microsoft’s February edition of its monthly security updates includes 13 bulletins which address 26 vulnerabilities. Five critical fixes address flaws that could potentially allow a hacker to remotely execute code on a specific system.

Those five fixes include patches for Windows SMB client flaws, the Windows Shell and TCP/IP components. Other critical fixes include an ActiveX killbit update and a fix for a flaw in the DirectShow component.

The latest patches also include one or mote critical fix for Windows XP, Server 2003, Vista, Server 2008 and Windows 7, and seven bulletins deemed “important”. Those bulletins include fixes for Windows and Office flaws, which could potentially cause service denial, elevation of privilege, and remote code execution attacks.

A bulletin rated as “moderate” in severity addresses a remote code execution flaw in Microsoft Paint for Windows XP and Server 2003.