Microsoft announced last weekteam ότι δεν θα κυκλοφορήσει ενημερώσεις ασφαλείας το Φεβρουάριο. Στην πραγματικότητα, η company canceled February updates entirely for the first time in Patch Tuesday history.
Microsoft δήλωσε ότι θα διαθέσει τις ενημερώσεις τον Μάρτιο κάτι που σημαίνει ότι αρκετά γνωστά θέματα ασφαλείας θα μείνουν unpatched. The first is a gap in the better safety of windows discovered on February 3 and concerns the SMB. The blank affects the Windows 8, Windows 10, and Windows Server operating systems.
Google after a few days posted a security flaw, affecting Windows, saying Micrsoft had been alerted to the vulnerability 90 days earlier, but did nothing.
So for the moment we have mentioned two unpatched topics that attackers could exploit, but there is also Flash Player. Adobe released a new version of Flash Player (24.0.0.221) and while Google released it immediately after its Flash Player update on Chrome, Micrsoft Edge was not updated.
This means that the version of Flash on Edge is currently vulnerable to attacks that target vulnerabilities points of Adobe.
The big problem is that users and administrators can not upgrade Adobe Flash Player on their own if Microsop does not release a patch for Flash.
However, Microsoft seems to have exceeded it today. The company has surpassed itself and released the Flash Player update for all systems that have built-in Flash Player.
As for the other security updates, the next scheduled monthly update on 14 March of 2017 is announced.
Microsoft released security bulletin MS17-005 just recently.
The MS17-005: It's a security update for Adobe Flash Player:
The company says:
February 21, 2017 — This security update resolves vulnerabilities in Adobe Flash Player if Flash Player is installed on any supported edition of Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows 10, Windows 10 Version 1511, Windows 10 Version 1607, Windows 8.1, or Windows RT 8.1.
Update KB4010250 is available through Windows Update but also his Microsoft Update Catalog.