Microsoft releases trio of security updates
Spoofing vulnerabilities will be addressed in the two important security bulletins.
Microsoft will issue three fixes when it releases its March security patches today, with one deemed critical and two labeled important.
The two important security bulletins will address spoofing vulnerabilities. Spoofing is the act of masking IP addresses to impersonate a sender or another computer.
Remote code execution (RCE) exploits — a recurring problem that Redmond has been patching during the last few years — will be addressed in the critical item. The critical fix will patch every operating system in Microsoft's supported repertoire: Windows 2000, XP and Vista, plus Windows Server 2003 and 2008.
Important fix No. 1 will cover the same operating systems as the critical fix. Microsoft's second important fix has a more limited scope, affecting Windows 2000 plus Windows Server 2003 and 2008.
All of the fixes will require users to restart their computers.
Microsoft is referring IT administrators this month to its update management portal to help plan and deploy the security fixes and updates. And, as it has done every month for a little less than a year, Redmond is offering the latest info on nonsecurity updates via a monthly knowledgebase article. The knowledgebase article provides details on the Windows Mail Junk E-mail filter and Microsoft's Malicious Software Removal Tool.
IT pros will be waiting to see which Windows components get addressed Tuesday when the patch is actually released. However, Microsoft's preview is usually a good indication of what's to come.
Jabulani Leffall is a journalist whose work has appeared in the Financial Times of London, Investor's Business Daily, The Economist and CFO Magazine, among others.