Today Microsoft released a Critical patch for its Server Service Applications. The Microsoft Security Bulletin MS08-067 update resolves a vulnerability in the MS server service. The vulnerability makes it possible for a worm or Trojan to freely gain access to your systems. Microsoft has released this patch today “out of band” (not on the regular Patch Tuesday) which speaks volumes of the threat this vulnerability poses.

It is absolutely crucial that your network administrator or IT department installs the necessary patch as quickly as possible. Un-patched your system will be completely at the mercy of a custom built worm which could take down server, steal private information, or worse. It is also highly advisable that you patch your system from a reputable source, namely Microsoft. There have been isolated reports of people becoming infected by websites promising quick fixes. If in doubt contact your IT department and let them make the necessary updates.

The systems at the highest risk are Windows Server 2000, Windows XP and Windows 2003. Windows Vista requires authorization by default and thus is less vulnerable to a possible attack but should still be checked. If your business runs on any of these operating systems take the steps to patch your systems immediately.

– Richard Keene
IT Computer Support of New York
Design and Optimization Department