Three New, Serious Security Flaws Found in Windows A spokeswoman said Microsoft is not yet aware of any active malicious attacks exploiting the reported vulnerabilities but said the software maker will take "appropriate actions" after it investigates. That might include an out-of-cycle security update.
By Keith Regan TechNewsWorld 12/27/04 1:31 PM PT Microsoft Latest News about Microsoft and its customers got no holiday break from security concerns as Symantec said it had confirmed three more yet-to-be-patched vulnerabilities in Windows, some of which can be used to launch denial-of-service attacks. Symantec said all three of the flaws are considered serious, and Denmark-based Secunia labeled them "highly critical," even though no widespread instances of exploits have been found in the wild so far. At least one of the vulnerabilities can be exploited even on machines that are running Windows XP with Service Pack 2 (SP2) applied. The Internet Storm Center noted that the earliest patches could be made available through Microsoft's new monthly rollout program would be January 11.
The only easy day was yesterday.
...some do, some don't; some will, some won't (WR)