By Brian Prince
Microsoft pushes out 11 security bulletins as part of October's Patch
Tuesday. Microsoft also unveils its Exploitability Index, which includes
information about vulnerabilities that are likely to be exploited. Four
of the 11 bulletin cover security issues are rated critical.
Microsoft released 11 security bulletins for Patch Tuesday Oct. 14 as
well as a new measuring stick to judge them by.
The "Exploitability Index" appears as a new table on the monthly
Microsoft Security Bulletin Summary. Next to each bulletin is an
additional rating based on how likely it is that the vulnerability will
be exploited. An additional column is for notes with extra information.
"Exploitability Index is way to provide more information to aid
customers in their risk management process," wrote Steve Adegbite on the
MSRC (Microsoft Security Response Center) blog.
Of the 11 bulletins, four are rated "critical." The critical bulletins
cover remote code execution issues in Internet Explorer, Active
Directory, Host Integration Server's Remote Procedure Call Service and
Register now for HITBSecConf2008 - Malaysia! With
a new triple-track conference featuring 4 keynote
speakers and over 35 international experts, this
is the largest network security event in Asia and
the Middle East!