Security Corner

Oct 13 2010   12:36AM GMT

Microsoft’s Patch Tuesday is Biggest Ever

Ken Harthun Ken Harthun Profile: Ken Harthun

Sixteen bulletins, four of them critical, patching a total of 49 vulnerabilities, comprise today’s round of patches for Microsoft’s largest ever Patch Tuesday breaking it’s previous record of 34 in 2010 August. Nine of the patch bulletins describe vulnerabilities which can be remotely exploited to inject and execute code on a victim’s system. The updates are likely to plug two vulnerabilities used by Stuxnet to elevate its privileges on infected systems.

Stuxnet was specifically written to attack Supervisory Control And Data Acquisition (SCADA) systems used to control and monitor industrial processes. Stuxnet includes the capability to reprogram the programmable logic controllers (PLCs) and hide the changes. According to a PC World report, “… Ralph Langner, a well-respected expert on industrial systems security, published an analysis of the worm, which targets Siemens software systems, and suggested that it may have been used to sabotage Iran’s Bushehr nuclear reactor. A Siemens expert, Langner simulated a Siemens industrial network and then analyzed the worm’s attack.”

See Microsoft Security Bulletin Advance Notification for October 2010.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: