Microsoft issues replacement for botched patch

Microsoft is now issuing a replacement patch for a fix that was shelved two weeks ago after customers reported problems resulting after they installed it.

The new update, KB2840149, addresses the vulnerability described in bulletin MS013-036. It corrects three privately reported vulnerabilities, rated "important" in the Kernel-Mode Driver, which, if exploited by attackers, could grant them elevated privileges.

In a blog post Tuesday, Dustin Childs, group manager of response communications at the Microsoft Security Response Center, said of the new patch: "If you have automatic updates enabled, you won't need to take any actions. For those manually updating, we encourage you to apply this update at your earliest convenience."