Intology - Intelligent Technology News
Computers Technology Internet Arts Business Science Sports

Microsoft has released four security patches in its May update. Three patches are critical while fourth one is moderate.

These updates deal with Microsoft Jet Engine, Microsoft Office, Microsoft Publisher and Microsoft Malware Protection Engine.

According to security firm Symantec the most dangerous of the vulnerabilities is the Jet Database flaw which could allow an attacker to remotely execute code on a target system. This only affects Windows 2000, XP Service Pack 2 and Windows Server 2003.

Windows Vista, XP Service Pack 3 and Windows Server 2008 are not affected by the flaw.

Here are the updates:

• MS08-026 - addresses a vulnerability in Microsoft Office (KB 951207)
• MS08-027 - addresses a vulnerability in Microsoft Publisher (KB 951208)
• MS08-028 - addresses a vulnerability in Microsoft Windows (KB 950749)
• MS08-029 - addresses a vulnerability in Microsoft security software (KB 952044)

According to Symantec researcher Robert Keith:

This is a relatively light month with four bulletins that cover a total of six vulnerabilities. The vulnerability affecting Jet Database Engine is the only update of the bunch. Evidence of this issue being exploited in the wild has been detected.

The second critical fix is for a pair of remote code executions in Word. The fix addresses the flaws in Office 2000, XP, 2003 and 2007. The update also addresses a flaw in Office for Mac 2004 and 2008.

The third critical bulletin addresses a remote code execution flaw in Microsoft Publisher that affects Office 2000, XP, 2003 and Office 2007.

The fourth patch with a rating of ‘moderate’, fixes a pair of flaws in Microsoft’s Malware Protection Engine that could allow a denial-of-service attack.