MS Issues Two Fixes for Patch Tuesday

Microsoft issued two more critical patches as part of its regular Patch Tuesday security update, including a fix for a vulnerability when viewing embedded Web fonts and a flaw in the decoding of TNEF messages. The company included its WMF fix with the monthly security updates, although a patch for the issue has been available since January 5.

The first patch fixes a problem in how Windows displays embedded Web fonts. The flaw could enable malformed fonts to be used as a way to execute code on a remote system.....The second patch pertains to a remote code execution vulnerability in the way Microsoft Outlook and Exchange handle Transport Neutral Encapsulation Formation MIME attachments. BetaNews | MS Issues Two Fixes for Patch Tuesday

Linked by shanmuga Tuesday, 10th January 2006 9:05PM