You are here: silicon.com > Software > Security Strategy

Security Strategy

Microsoft patches hasty patch

Scared of a mouse...

Tags: microsoft, flaw, patch, cursor

Printer Friendly Email Story RSS

By Joris Evers

Published: 10 April 2007 08:59 BST

Microsoft is set to today push out a fix to repair problems caused by last week's emergency cursor flaw patch.

The fix will be delivered as a "high priority" update alongside Microsoft's regular security updates, Christopher Budd, a Microsoft security staffer wrote on a corporate blog.

Microsoft has identified three additional applications that conflict with last week's "critical" MS07-017 security update. Originally the company listed only the Realtek HD Audio Control Panel as software that would not function and cause error messages to appear. CD-Tag, ElsterFormular and TUGZip have been added to that list.

Budd wrote: "While the impact of these issues is clearly not widespread, it is affecting some of our customers." For example, in Germany the issue with ElsterFormular is causing headaches because companies use it to file their taxes, according to the Elster website.

Microsoft broke with its monthly patch cycle to repair a bug in the way Windows handles animated cursors. Cyber crooks had been using the hole to attack Windows PCs. Microsoft knew about conflicts with Realtek's audio software before releasing the fix and published a support article with the security bulletin.

Microsoft's Automatic Updates, the Windows feature that automatically downloads and installs fixes, will install the fix only on PCs that run conflicting applications, Budd wrote. The Windows Update and Microsoft Update websites will also offer it only if conflicting software is found on a PC, he wrote.

For organisations, Microsoft will make the fix available through its Windows Server Update Services and Software Update Services patch installation tools, though with a possible delay until later next week, Budd wrote. The fix is already available for download from Microsoft's website.

Microsoft also plans to release five security bulletins today, four of which will address Windows flaws. The bulletins, part of Microsoft's monthly patch cycle, will provide fixes for an undisclosed number of security vulnerabilities.

Joris Evers writes for CNET News.com

Add Comment Add comment  Printer Friendly Print story   Email Story Email story   RSS
In
Applications

Operating Systems

SOA/Web Services

Malware

Security Strategy


Related Links

Microsoft in a fix over cursor patch

Microsoft to rush out cursor flaw fix

Windows at risk from fancy cursors

Windows has fewest security holes

Microsoft probing holes in Vista, IE 7

More flaws: Bugs hit Firefox, IE

Microsoft patches 20 holes - none affecting Vista

Microsoft has security dozen in the oven

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Naked CIO Naked CIO: Should you monitor staff? Somebody's watching you

Elinor Mills Why 1970s hackers had 'whiz kid' status Q&A: Kevin Mitnick - blackhat hacker turned good guy

SMS flaw leaves iPhone vulnerable to attack

ID cards: 'A project nobody wants and the nation can't afford'

IT security training now the 'substantial' task of GCHQ

PayPal techies hit fraudsters where it hurts

SMEs on target list for UK cyber attack group


  • Jobs
XenServer and Provisioning Server Escalation Engineer - Citrix Systems Ireland

Design and host advanced training classes quarterly for the Global Escalation and ANG TRM Teams Participate in internal employee facing and external ...

IT Specialist/All Rounder Network/Desktop Support & Development

Additionally you will need maintain and help mobilise the company's IT kit and supervise software maintenance and upgrade - Quad graphic cards, UPS, ...

FIX Application Support Analyst

Our Client, based in the City of London our looking to hire FIX Application Support Analyst on a permanent basis. Supporting the Order Execution ...

Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.

The Financial Close: Optimizing Performance and Driving Financial Excellence

Enterprise Performance Management - Financial Excellence and Beyond

A complete view of the enterprise

Making the Business Case for HR Investments

Martin Brokers cashes in on back-up swap

VocaLink makes virtualisation pay

Sony Pictures sets sights on best IT Oscar

Co-op Group kicks "server sprawl" into touch

Arts Council gets tech troubleshooting boost

Torex tech treats Thorntons to quicker sales

Stories from the web...


Large Hadron Collider's grid gets stressed

Heatwave? No sweat for CIOs

Has in-flight entertainment got wings in the iPod era?

MoD inks £231m deal to boost comms

Take a trip to the future of air travel

Orange launches managed videoconferencing




Quick Sitemap Links: