- #WINDOWS LIVE DESKTOP MESSENGER UPGRADE INSTALL#
- #WINDOWS LIVE DESKTOP MESSENGER UPGRADE UPDATE#
- #WINDOWS LIVE DESKTOP MESSENGER UPGRADE PATCH#
A bug in Messenger's webcam and video chat features was reported late last month on a Chinese-language security mailing list, and exploit code quickly followed. The vulnerability that prompted the compulsory upgrade was described by Microsoft in Tuesday's MS07-054 security bulletin, which only recommended that users upgrade.
In early 2005, Microsoft made patched versions of MSN Messenger mandatory when security researchers posted attack code that targeted flaws that had been disclosed only hours before. "Some of you might feel this inconvenient, but in order to protect you and protect the health of the network, we have chosen to take this step," Anand added.
#WINDOWS LIVE DESKTOP MESSENGER UPGRADE UPDATE#
Windows Live Messenger 8.1 has been offered to users since February, but until now, the update has been optional.
#WINDOWS LIVE DESKTOP MESSENGER UPGRADE INSTALL#
You must install the newer version in order to continue. The dialogue will read: "A newer version is available. Else, leave me be with 8.The update, he added, will be rolled out over several days, so users running MSN Messenger 6.2, 7.0 and 7.5, as well as Live Messenger 8.0, may not see the notification immediately. "Put sharing folders in and I'll be happy. "I have stayed with 8.5 to retain sharing folders, which I rely upon," added someone labeled "Sam Toucan" in the same comment thread. I'll always use 8.5, don't care what frigging exploits it has." "So now you're forcing us to upgrade to something that's horribly broken?" said a user identified as "hemingray" in a comment to the blog. Nearly two years ago, Microsoft did the same thing - again because of a security vulnerability - when it forced users to update to Windows Live Messenger 8.1.īut some users reacting to last week's announcement took the opportunity to knock the upgrade. Mandatory Messenger upgrades are nothing new. Unless they upgrade on their own, those people will continue using the vulnerable software. Nor will users running any version of Windows older than XP be required to upgrade. "Microsoft currently issues upgrades for the Windows Live Messenger client using the Windows Live Messenger service because these online services have their own client deployment mechanism," Microsoft said.
#WINDOWS LIVE DESKTOP MESSENGER UPGRADE PATCH#
The Messenger upgrade will not be pushed to users via Windows Update, the normal patch distribution service. "If you do not accept the upgrade, you may not be allowed access to Windows Live Messenger service," the advisory read. In the alert's FAQ, the company made clear that the upgrade was mandatory. Last week, Microsoft revised the security advisory for the ATL vulnerabilities to add a section on Messenger. Previously, Microsoft said it might take months for it to go through the code of all its software to determine which was affected by the ATL bug. Windows Live Messenger was not among the programs named in MS09-037, the accompanying security bulletin, however.
11, as part of its regularly-scheduled monthly security update, Microsoft patched five more ATL flaws in several company-made components. On July 28, Microsoft issued a pair of emergency patches to crush the ATL bug in Internet Explorer and Visual Studio, the company's popular development platform. In late July, Microsoft acknowledged that the vulnerability introduced in software crafted using ATL was due to a one-character typo: an extra "&" symbol to be exact.
0 kommentar(er)
