Important SQL and Exchange Server patches

A security issue has been identified in the Microsoft SQL Server 2000 Desktop Engine (WMSDE) that could allow an attacker to compromise your Microsoft Windows-based system and gain control over it (Bulletin MS09-004), and Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (Bulletin MS09-003).

The vulnerability in the MS Exchange Server is the most severe, Microsoft explains:

”This vulnerability means that any cybercriminal sending a well
crafted email attachment to an enterprise could gain complete control
over the server and gaining one of the keys to the kingdom…

All kinds of highly confidential and proprietary information pass
through an Exchange server every day.  Gaining control over it and its
content would be a gold mine to any cyber criminal,”  – Extracted from ZDNet

Other applications are also being patched up, Microsoft Visio and IE being included. Microsoft released its monthly security bulletin on the 10th of February.

Related Posts

Technorati Tags: , , ,

Comments are closed.