NEWS CATEGORIES:

NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
MEET THE EDITORS >>

Home / News / Microsoft / Patches and Vulnerabilities

Patches and Vulnerabilities

Download Vista SP1 RTM Security Releases ISO Image

April 2008

By Marius Oiaga, Technology News Editor

10th of April 2008, 09:00 GMT

Adjust text size:

On April 8, 2008, Microsoft released a total of eight security bulletins for Windows, Office and Internet Explorer as an integral part of its monthly patch cycle. The patches are delivered through the Windows Update infrastructure, but the Redmond company is also making them available as an ISO image through the Microsoft Download Center. The April 2008 Security Releases ISO Image is a package containing all the security updates released for the Windows

operating system that have been also distributed through WU starting with April 8. In this regard, this month's Security Releases ISO Image has bundled the patches designed to plug the security vulnerabilities in Windows Vista Service Pack 1 RTM.

Microsoft's eight bulletins resolve "a total of 10 vulnerabilities," said Keith, Symantec Security Response Engineer. "Of those, six are rated 'critical,' three are 'important' and one is 'moderate.' Although all the critical issues are noteworthy, the vulnerability in VBScript/JScript and the vulnerabilities in GDI could be the worst of the bunch. The components are installed on multiple flavors of Windows and are relatively easy to exploit. Customers are advised to follow security best practices, specifically avoiding websites of unknown and questionable integrity and refusing to accept or open files from unknown sources."

The April 2008 Security Releases ISO Image brings to the table the following security bulletins: MS08-020, MS08-021, MS08-022, MS08-023, MS08-024 and MS08-025. No less than four of these impact Windows Vista RTM and SP1. MS08-020 will plug a hole in the DNS Client that allows for spoofing or redirecting of Internet traffic to malicious locations. MS08-025 resolves an issue in the Windows Kernel that leaves even Vista SP1 susceptible to Elevation of Privilege attacks. MS08-023 is an update of ActiveX Kill Bits and MS08-021 deals with two critical vulnerabilities in the GDI, which could allow for remote code execution and the compete takeover of a compromised system.

The April 2008 Security Releases ISO Image is available for download via this link.

TAGS:	Windows Vista SP1 \| RTM \| April 2008 \| Security Releases ISO Image \| security bulletin	SHARE THIS
Read by 4,365 user(s) \| Add comment \| Link to this article		TWEET THIS

Article rating:

Good (3.5/5)

4 vote(s)

Subscribe to news |

Print article |

Send to friend

SEARCH THE NEWS ARCHIVE :

Today's News | Yesterday's News | News Archive

User opinions:

No user comments yet.

Be the first to express your opinion using the form below!

Share your opinion:

SUBMIT PROGRAM \| ADVERTISE \| GET HELP \| SEND US FEEDBACK \| RSS FEEDS \| ENTER NEWS SITE \| ENGLISH BOARD \| ROMANIAN FORUM
© 2001 - 2009 Softpedia. All rights reserved. Softpedia® and the Softpedia® logo are registered trademarks of SoftNews NET SRL.	Copyright Information \| Privacy Policy \| Terms of Use \| Update your software \| Archive