MICROSOFT HAS RELEASED ITS LATEST PATCH package, unveiling a slender bundle of critical tasks for IT teams to deal with.
You know the drill. You are going to want to get on these things pretty quickly. Microsoft brings them to us with the Microsoft Security Bulletin MS15-106 and others up to MS15-111. The fixes relate to Windows, Office and InternetExplorer, and this is serious business.
Qualys CTO Wolfgang Kandek said that small things come in important packages. "October's patch bulletin may be a light edition but pretty much everyone is affected this month as most versions of Internet Explorer, Windows and Office are at risk - and many of the vulnerabilities identified could lead to remote code execution, " he said.
Kandek added that the full canon of releases is worthy of consideration, adding that MS15-111 cancels out local privilege escalation problems with Windows from Vista through to Windows 10.
"Attackers could use such a vulnerability to gain system-level access once they are already on a machine," he said.
Chris Goettl, product manager at Shavlik, also chimed in with a take on the apposite response, saying that at least one element, MS15-110, includes a fix for a publicly disclosed problem with SharePoint.
"SharePoint admins, if you have not done so already, you should virtualise your SharePoint server to take advantage of snapshots for rollback," he said. "It is a lifesaver. This update also affects Office 2016, which was just recently released."
The suite of security updates covers things including Internet Explorer, SharePoint, Edge, Office, Windows and Server, so it is possibly easier to list those that are not affected.
The important thing to remember, as always, is that you or your company is probably affected and that you need to get patched like a pair of airy trousers. µ
Tabs to more Ctrl and less Win. Such Fn.
Either that or it's a really intense holiday