Microsoft provides security updates

Microsoft announced updates to its Windows Embedded Standard 2009 operating system, some of which also apply to Windows XP Embedded. New features include a Web Services on Devices API and Powershell 2.0, while there are three "optional" updates and three security updates, the company says.

Best Microsoft MCTS Training, Microsoft MCITP Training at certkingdom.com

Microsoft's premier embedded operating system is now Windows Embedded Standard 7, still in CTP (community technology preview) status. But ongoing updates for Windows Embedded Standard 2009 show that the company hasn't forgotten about its earlier, Windows XP-based embedded OS.

Last month, for example, brought a variety of feature and security updates, including a macro component that allows installing Powershell 2.0.

According to Microsoft, June 2010 security updates are now available, and they're applicable both to Windows Embedded Standard 2009 and Windows XP Embedded with Service Pack 2, Feature Pack 2007, Update Rollup 1.0 and Service Pack 3. The security updates may be applied directly to runtime images, the company adds.

The June 2010 security updates are described as follows by Microsoft:

* 978542 -- vulnerability in Outlook Express and Windows Mail could allow remote code execution
* 979902 -- vulnerabilities in media decompression could allow remote code execution; this KB solution is comprised of the following KB update packages: KB975562, KB978695, and KB979482
* 979559 -- vulnerabilities in Windows kernel-mode drivers could allow elevation of privilege
* 980195 -- cumulative security update of ActiveX kill bits
* 980218 -- vulnerability in the OpenType compact font format (CFF) driver could allow elevation of privilege
* 981793 -- May 2010 cumulative time zone update
* 982381 -- cumulative security update for Internet Explorer
* 982865 -- vulnerability in Microsoft .NET Framework could allow tampering
* 974378 -- vulnerabilities in the Microsoft .NET common language runtime could allow remote code execution; this KB solution is comprised of the following KB update packages: KB953300 and KB974417
* 981343 -- vulnerability in Microsoft .Net Framework could allow tampering; this KB solution is comprised of the following KB update packages: KB979909 and KB982865
* 982168 -- Microsoft .NET Framework 3.0 SP2 update (rollup of KB976765, KB980773 and KB976769 to allow .NET opt-in to extended protection for authentication (security advisory KB973811)

According to a posting on Microsoft's Windows Embedded Standard blog, an update is also included that resolves an issue introduced with the April 2010 component database security updates, whereby a duplicate package caused the Packages view to be locked in Database Manager.