News
Microsoft Reissues July WSUS Patch
Taking another crack at the WSUS-Server 2008 fix, Microsoft offers the patch via Windows Update
By Gregg Keizer, Computerworld
August 15, 2008 — CSO —
Microsoft Corp. yesterday reissued a July fix for a bug that had prevented some network administrators from using the company's primary business patch-management tool to deploy security updates.
The patch was posted to Windows Update Tuesday along with a raft of more than two-dozen other fixes. It's the second time in the past month that Microsoft has addressed an issue with Windows Server Update Services (WSUS), the free add-on to Windows server software that lets companies feed security updates to client systems.
In early June, WSUS administrators discovered that they were unable to push patches to machines that had Office 2003 onboard. Microsoft determined that a synchronization bug in a recent Office 2003 Service Pack 1 update was at fault and promised a fix.
Although it delivered a patch July 10, the next day it acknowledged some administrators running WSUS on Windows Server 2008 had problems after installing the fix. "In order to successfully install this update, you must run the update as an administrator," said Microsoft in an advisory at the time.
On Aug. 1, Microsoft quietly reissued the patch - tweaked so it would install on Server 2008 - and posted it on the company's download center.
Yesterday, Microsoft added the revised WSUS patch to Windows Update to make it available for automatic download and installation.
Administrators who manually downloaded and installed the repatch between Aug. 1 and Tuesday, of course, do not need to do so again via Windows Update, Microsoft noted in a revised security advisory.
The just-patched problem was the second found in WSUS during June. Earlier that month, some enterprises running System Center Configuration Manager 2007 were unable to push patches to end users' machines. That bug was also traced to Office 2003 Service Pack 1, Microsoft later said. It has refused to link the two issues, saying only that there were "similarities in the contributing factors" in both.
Data Center Directions Virtual Conference
Attend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.
The Surest Path to Effective and Efficient Compliance
In this webcast, we explore why and how — with best practices, practical tips and solutions that work — to ease your compliance challenge.
- View Gartner Video: Best Practices on Web Application Security
- Make Compliance Regulations an Ally Not an Enemy
- Protecting Sensitive and Confidential Information with Endpoint Security
- Endpoint Security: Compliance at the Endpoint
- Revolutionizing Endpoint Security with a Single Agent
- Data Protection: Challenges for the Traveling User
- Effective Security with a Continuous Approach to ISO 27001
- How Are Open Source Development Communities Embracing Security Best Practices?
- The Case for Business Software Assurance ~ Securing Your Applications
- Forrester Reports 321% ROI Through Device-Based Fraud Management
- Unlock the Power of Device ID to Combat Online Fraud and Abuse
- Network Security Services: Outsourcing considerations for maximizing network protection
Get instant notifications when whitepapers, webcasts and case studies are added
to our library. Sign up for a Resource Alert now!
CSO Corporate Partners
CSO Executive Seminar on Application Security
-
January 29, 2009New York, New YorkRegister now »
-
February 25, 2009San Francisco, CaliforniaRegister now »
(ISC)2 members can earn up to 6 CPE Credits
Reference priority code ONLINE and attend this program as our guest — that's a $295 savings!
