About us
Contact us
RSS
Newsletters
Blogs
Video
RESOURCES
EVENTS
TOPIC AREAS
Computer & Internet Security News
11 July 2008
Microsoft fixes month-old WSUS flaw
Microsoft has issued a fix for a flaw that had blocked users from grabbing security patches through Windows Server Update Services (WSUS) for several weeks.
The hotfix, which Microsoft outlined in a support document published Wednesday, addresses a snafu first reported by the company's WSUS programme manager, Cecilia Cole, three weeks ago.
At the time, Cole said that PCs with Office 2003, or components of that version of the application suite, were unable to retrieve updates from their designated WSUS servers because of an unspecified bug.
The WSUS problem was the second in two weeks with one of Microsoft's patching mechanisms. In mid-June, some corporations running System Center Configuration Manager 2007 (ConfigMgr) were unable to push patches to end users' machines. In both cases, a June update to Office 2003 Service Pack 1 was involved, Microsoft admitted. But it offered no further details.
Last week, in fact, a Microsoft spokesman said it was "premature" to say that the WSUS problem was related to a ConfigMgr glitch.
In Wednesday's support document, Microsoft acknowledged that the WSUS bug was rooted in the Office 2003 update, but it didn't provide details. "This problem occurs because a recent revision to an Office 2003 Service Pack 1 update causes some WSUS 3.0 servers to incorrectly synchronize the revised update with the update's approvals," read the document. "When the affected client computers communicate with such a server, the Web service is unable to process the approvals. Therefore, the detection is unsuccessful."
Microsoft did not immediately reply to a request for more information about a possible link between the WSUS and ConfigMgr troubles.
However, the company did say it is still working on delivering the fix through the normal Windows Update and WSUS channels; currently, the patch is available only as a manual download.
"When released through WU/WSUS, it will be marked as a mandatory update, which means it will appear in the Updates/WSUS Updates node of the Admin console, and will be auto-approved by default," warned Marc Shepard, lead program manager, in an entry posted to the WSUS team's blog.
<<newer article | back to index | older article>>
close
close
Email this article to a friend or colleague:
PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.
close
- This article is now being printed.
close
What are your views on this subject? Use the form below to post a comment on this article up to 1000 characters.
close
What is this?
Click below to add 'Microsoft fixes month-old WSUS flaw' to your blog.
If you do not have a ComputerworldUK Account and would like to use this feature, please Register.
If you are a registered, logged-in user, this will post the title and first paragraph of this story to your blog to share with your readers.
Subscribe to the Computer & Internet Security newsletter
Recent Computer & Internet Security news
- Nokia admits mobile phone security flaws
- Opera patches 7 flaws, but remains quiet on one bug
- VoSKY tames Skype with new gateway
- Windows clipboards polluted by crafty Flash ads
- DeviceLock counters USB stick menace with alliance
Subscribe to the Computer & Internet Security news RSS feed 
Other recent Techworld news
- Star offers low-cost disaster recovery
- Salesforce.com snaps up InStranet
- IBM spends big to beef up backup centres
- Intel dual-core Atom expected next month
- Ericsson and STMicro partner up for mobile chip venture
Recent Computer & Internet Security features
- Ten tips for ultra-safe browsing
- Too much network control is a bad thing
- CAPTCHA security - more worthless by the day
- Spotting weak security staff
- The next security worry - the photocopier
Recent Computer & Internet Security reviews
- Billion BiPAC 7402GX router
- DrayTek Vigor 2820Vn router
- SanDisk Cruzer Professional
- PortTracker
- ClearMyMail spam filtering
Latest PC Advisor news
- iTunes Limited: China bans Apple for Tibet protest
- iTunes Unlimited coming next month?
- Jerry Seinfeld to become Microsoft figurehead
- First Nike + iPhone screenshots emerge
- Firefox 3.0 auto-update expected soon
Computer & Internet Security topics
Authentication,
Email security,
Firewall protection,
Internet security,
Internet security system,
Intrusion,
Intrusion prevention,
Intrusion prevention system,
Personal firewall,
Security software,
Spyware software,
User authentication,
Virus program,
Virus software,
Windows firewall,
Wireless LAN security,
Wireless security
All topics »
WHITE PAPERS
- Audio Electronics and the "Mobile Phone Buzz"
Redefining the standard for voice conferencing solutions by eliminating conference call “buzz” - The Forrester Wave: Data Center Automation
Discover why HP leads the pack in a very competitive DCA market. Essential reading from Forrester, for IT Infrastructure & Operations Professionals. - How to Choose the Right Virtualization Technology For Your Environment
Explore expert insight into the key considerations you must consider when choosing the virtualization strategy and technology that best suits your environment. - IDC Executive Brief: Secure, Flexible & Mobile Working
Explore the benefits of creating a secure, flexible and mobile working environment and recommendations about overcoming the challenges that organisations may face. - Transformational Analytics: Consolidating Workloads onto Mainframes
Explore processes for analyzing existing IT environments to determine optimal workload consolidation onto the Mainframe platform.
Techworld topic pages
|
|
- About Techworld | Contact | Privacy Policy | About IDG | All contents © IDG 2008 | webmaster@techworld.com
- Infoworld | Networkworld | Tecchannel | Techworld Netherlands | IT World Canada