Microsoft’s Security Response Center (MSRC) has recently had to revise its security bulletin after users continually complained about issues caused by the patches included within it.
It appears that users of the Windows 2000 operating system with Microsoft DirectX 8.0 or DirectX 9.0 installed are experiencing difficulties in selecting the appropriate security updates in the company’s monthly security bulletin. As a result, many users have inadvertently installed incorrect patches, putting their systems at risk of remote attacks through the execution of malicious code.
A spokesperson from MSRC stated that the center has confirmed and addressed all errors related to this issue. However, the spokesperson emphasized that only a small number of Windows 2000 users are affected by this error.
The patch for the security update MS05-050 is included in Microsoft’s October security bulletin, which provides detailed information about the issues causing errors along with remediation guidance.
According to that information, Microsoft explained that previously, users—via Microsoft’s automatic security patch distribution system—had installed a separate update for DirectX 7.0 for systems running Windows 2000 with DirectX 8 or DirectX 9 installed. The new patch in the October Security Bulletin cannot address its security flaws. Furthermore, users did not receive any notifications regarding the installation status of these security patches.
The MS05-050 patch is considered one of the most critical patches in Microsoft’s October Security Bulletin.
HVD – (eWeek)
