Low-Key Patch Tuesday, but Brings Critical IE Update

MicrosoftEUs June Patch Tuesdays are usually light and this yearEUs release was no exception. On Tuesday the tech giant pushed out eight bulletins, including two critical updates and six important updates.

Redmond issued fixes for critical bugs in Internet Explorer and Windows Media Player. Flaws rated EUimportantEU in Microsoft Office, Microsoft Common Controls, Windows, Active Directory Federation Services, and Microsoft Exchange Server also received patches.

The relatively low number of patches is good news for those who have their sights set on summer vacation. But Russ Ernst, director of product management at security solutions firm HEAT Software, told us this release also makes us wonder how many more of these Patch Tuesday cycles we will have. But first things first.

Please Patch Now

EUIf youEUre using IE, patch it now, please. We see a patch every month for this popular browser for a reason,EU Ernst said. EUThe bad guys love to exploit it along with all of the other popular browsers like Firefox and Chrome, and in too many instances, they are successful. This month, attackers could force a remote code execution and gain the same rights as the affected user.EU

MS15-059 should be second on your list of priorities, according to Ernst. ThatEUs because although rated as important, it impacts all shipping desktop versions of Microsoft Office. The bulletin addresses three vulnerabilities in Office that an attacker can use for remote code execution.

EUThere are other Microsoft bulletins to deal with -- including critical MS15-057 that impacts Windows Media Player and grants full user rights to the attacker when a malicious file is played," he said. "But youEUll also need to prioritize a vulnerability in Adobe Flash. APSB15-11 is the eighth update of Flash Player this year and updates 13 vulnerabilities that span across Windows and Mac desktops."

Patch Tuesday Questions Remain

So what about Patch...

Comments are closed.