https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2021 MSP 501 Application
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2021 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2021 MSP 501 Application
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2021 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

Business Models


Microsoft Delays Februarys Patch Tuesday Update

Microsoft Delays February’s ‘Patch Tuesday’ Update

  • Written by Aldrin Brown
  • February 15, 2017
The postponement comes as IT admins await a solution for a zero day vulnerability targeting Windows SMB traffic, the Microsoft file-sharing protocol.

Microsoft this week delayed its monthly Patch Tuesday update, citing an undisclosed “issue” that cropped up at the 11th hour.

“Patch Tuesday,” so called because it falls on the second Tuesday of each month, is among the software industry’s most reliable routines for releases of software fixes.

The delay comes as administrators await a solution for a zero day vulnerability affecting Windows’ handling of SMB traffic, the Microsoft file-sharing protocol.

“Our top priority is to provide the best possible experience for customers in maintaining and protecting their systems,” Microsoft said in a short blog post Tuesday. “This month, we discovered a last minute issue that could impact some customers and was not resolved in time for our planned updates today.”

“After considering all options, we made the decision to delay this month’s updates,” the post continued. “We apologize for any inconvenience caused by this change to the existing plan.”

Microsoft offered no further details about the “issue” that prompted the delay, nor an estimate for when the update might ultimately be released.

Update: Microsoft has updated its advisory and announced it has canceled its patch update for February and will deploy fixes next on Tuesday, March 14.

The postponement comes a week after the federally backed CERT cybersecurity division at Carnegie Mellon University announced the discovery of the new vulnerability in an advisory entitled “Microsoft Windows SMB Tree Connect Response denial of service vulnerability.”

“Microsoft Windows contains a memory corruption bug in the handling of SMB traffic, which may allow a remote, unauthenticated attacker to cause a denial of service on a vulnerable system,” the CERT researches said, adding that: “By causing a Windows system to connect to a malicious SMB share, a remote attacker may be able to cause a denial of service by crashing Windows.”

The advisory adds that the exploit – the code for which is publicly available – causes windows to improperly handle traffic from the attacking server.

“In particular, Windows fails to properly handle a specially-crafted server response that contains too many bytes following the structure defined in the SMB2 TREE_CONNECT Response structure,” the statement said. “By connecting to a malicious SMB server, a vulnerable Windows client system may crash…”

“We have confirmed the crash with fully patched Windows 10 and Windows 8.1 client systems, as well as the server equivalents of these platforms, Windows Server 2016 and Windows Server 2012 R2,” the advisory continues. “Note that there are a number of techniques that can be used to trigger a Windows system to connect to an SMB share…Some may require little to no user interaction.”

 

Send tips and news to [email protected].

Tags: Cloud Service Providers Digital Service Providers MSPs VARs/SIs Business Models

Related


  • Security Operations Center SOC
    Kaseya Buying RocketCyber to Improve MSPs' Security Capabilities
    This acquisition "catapults" Kaseya even further ahead of its competition, the company's CEO said.
  • CP-Expo-Logo-1050x618 web
    Channel Partners Virtual Wraps — See You In Person at CP Expo Homecoming
    So long, Channel Partners Virtual. But what a week it was. Now, our live event is on tap.
  • Pile of Cash
    VC Firm Greenspring Associates Leads $40M Investment in MSP Electric
    Electric has raised more than $100 million with its latest C-Series funding.
  • CP-Expo-Logo-1050x618 web
    Channel Partners Virtual 2021 Is Here — Take Advantage of the Amazing Content
    Some of the industry's most compelling speakers are poised to take the virtual stage at this week's event.

2 comments

  1. Avatar Anonymous February 15, 2017 @ 9:33 pm
    Reply

    Microsoft gave us to “it’s
    Microsoft gave us to “it’s not you, it’s me” line before dumping us on Valentine’s day. Sad.

  2. Avatar Anonymous February 16, 2017 @ 3:59 pm
    Reply

    Updated information:
    Updated information: myitforum.com/myitforumwp/2017/02/16/microsoft-skips-februarys-patch-tuesday-altogether/

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Channel Futures & Channel Partners Announce Key Initiatives for 2021
  • Productivity During ‘Work from Wherever’: Choosing the Right Back-Office Tools for a Distributed Workforce
  • Andy Jassy of AWS Is Movin' On Up: Partners React
  • Latest VMware Job Cuts Impact More Workers in California

Galleries

View all

From The Second City: How to Use Improv as a Business Tool

March 3, 2021

Industry Perspectives

View all

5 Ways XDR Can Improve Operational Efficiency for MSPs

March 4, 2021

Multi-Cloud: Strategy or Inevitable Outcome? (or both?)

March 3, 2021

Backup Vulnerability: 4 Targets Hackers Might Utilize to Infiltrate Your Backup Solution

March 2, 2021

Webinars

View all

A Partner’s Perspective on Channel Success in 2021

March 23, 2021

XDR and Why it Matters to MSPs

March 24, 2021

Top Security Trends Impacting Technology Security Providers In 2021

March 25, 2021
  • 1

White Papers

View all

Why Fortinet for my MSSP?

March 2, 2021

Small and Mid-Size Business Security: 4 Steps to Success

March 2, 2021

How SMBs Can Secure Endpoints and Remote Workers for the Long Haul

March 2, 2021

Upcoming Events

View all

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

Chinese hacker group #HAFNIUM exploits critical @MSFTExchange Server vulnerability, could impact thousands.… twitter.com/i/web/status/1…

March 7, 2021
ChannelFutures

Our latest #Cybersecurity Roundup highlights #CPVirtual, @Huntresslabs, @Entrust_Corp and @InsightEnt.… twitter.com/i/web/status/1…

March 5, 2021
ChannelFutures

RT @Channel_Expo: A HUGE thank you to our amazing #CPVirtual sponsors and exhibitors! 👏 @ATTBusiness @DellTech @8x8 @lumentechco @telarus @…

March 5, 2021
ChannelFutures

.@okta acquiring rival @auth0 in $6.5 billion all-stock transaction. #security dlvr.it/Rtzwdp https://t.co/4LvHCJuwsR

March 4, 2021
ChannelFutures

.@MicrosoftTeams features are coming to @MSFTDynamics365, the company announced at @MS_Ignite. #MicrosoftIgnite… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

.@PreciselyData acquired by Clearlake Capital, @TAAssociates. #digitaltransformation dlvr.it/RtzbKg https://t.co/1rNYnTScxq

March 4, 2021
ChannelFutures

Thanks for attending #CPVirtual. Here's a Day 3 wrap and a look ahead to #CPExpo Homecoming in November!… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

.@Veeam announces six annual Impact Partner Awards, with @SHI_Intl, @LogicalisUS, more. #cloud… twitter.com/i/web/status/1…

March 4, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X