Adobe announces a critical update and Microsoft releases Security Bulletins for March 2006
Microsoft Security Bulletin Summary for March reports the release of one security patch rated "critical" and another rated "important". In addition, Microsoft has issued a security advisory [KB916208] regarding a critical vulnerability recently discovered in Adobe Macromedia Flash Player and reported in Security Bulletin APSB06-03 released by Adobe.
Microsoft Security Bulletin MS06-012 warns of vulnerabilities in Microsoft Office that could potentially allow an attacker to gain complete control over an affected machine if a user is logged on with administrative user rights. An attacker could then view, change or delete data, execute code on the machine, create new user accounts with full privileges etc.
Adobe Security Bulletin APSB06-03 reports vulnerabilities, also discussed in a Microsoft Security Advisory [KB916208], that could potentially allow an attacker to gain complete control of an affected system. These vulnerabilities could be exploited by planting a malicious SWF file on a webpage that would then be loaded into the browser's Flash Player.
Adobe recommends that all users upgrade their browser's Flash Player to version 220.127.116.11, by downloading it from the Macromedia Flash Player Download Center.
Users are advised to patch their systems against these vulnerabilities immediately. Patches can be downloaded via links posted within the appropriate Security Bulletins and by visiting Microsoft Update.
We recommend that users patch their systems by downloading and installing critical Microsoft updates as soon as possible.
Users are also encouraged to update their antivirus software daily and to install a firewall on their computers, if they have not done so already. For more information on firewalls, please read Microsoft's tutorial on how to protect your PC.
- Microsoft Security Bulletin MS06-012 - [KB905413]
- Microsoft Security Advisory - [KB916208]
- Adobe Security Bulletin APSB06-03