Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
    Digg this story   Add to  
PowerPoint gets hefty fix, Apple inundates
Published: 2009-05-13

Microsoft released a single, massive update for its presentation software on Tuesday, closing 14 vulnerabilities in the program, while Apple shuttered at least 70 security issues in its operating system and applications the same day.

The patches, along with a critical fix for a flaw in Adobe Acrobat, made Tuesday a serious administration day for desktop users. Microsoft's fix for PowerPoint closed 14 security vulnerabilities, including a flaw that is currently being used by attackers to compromise systems, the software giant stated in its bulletin. The security issues were ranked Critical only for Microsoft Office PowerPoint 2000 Service Pack 3 and only in 11 cases. The flaws were, at most, rated Important for more modern versions of the program.

Despite the hefty fix, security firms characterized the latest Patch Tuesday as a light day for Microsoft. In addition, the patch for the flaw being used in attacks on the Internet came fairly quickly, Andrew Storms, director of security operations for network-protection firm nCircle, said in a statement.

"Forty days from bug to bug fix is a decent turnaround for Microsoft given the vast number of Microsoft Office permutations that need to be quality tested," he said.

On the same day as Microsoft, Apple released its own massive update, fixing 70 flaws in the open-source and proprietary components of its Mac OS X. In its main patch for its operating system, the consumer technology company fixed at least 67 flaws, including numerous problems in components handling the PHP and ruby languages and the X11 windowing system, according to the company's advisory. In a separate update, Apple also fixed three flaws in its Safari browser.

Adobe also released a patch to fix a major vulnerability in its Reader and Acrobat applications.

If you have tips or insights on this topic, please contact SecurityFocus.

Posted by: Robert Lemos
    Digg this story   Add to  
Comments Mode:


Privacy Statement
Copyright 2009, SecurityFocus