Lessons learned from Microsoft's MS06-013 patch

by Bob Rudis
Sept. 25, 2017 1 comment Symantec Pen Testing & Audits

On April 11, 2006, as part of Microsoft’s regular "Patch Tuesday," Redmond released MS06-013, a cumulative security patch for Internet Explorer. The patch fixes ten vulnerabilities, some with active exploits in the wild. It also contains a functionality update or change in ActiveX that users who patch via Microsoft Update or Windows Update might not have seen. This article takes a quick look at the functionality changes in MS06-013, and then discusses the new types of deployment decisions that are being made within enterprise environments in light of this critical Microsoft security patch.


2flash 7 months, 3 weeks ago

MS06-013 was definitely a game changer. Heard back then a lot of pros and cons of it, but finally it proved to be of great use.