Microsoft Preps Patch to Fix 34 Security Holes in Windows, Office, and IE

Paul Lilly

Microsoft tomorrow will issue 10 security bulletins to address 34 security vulnerabilities found in Windows, Office, and Internet Explorer, the Redmond outfit announced. Three of the bulletins have been rated as " Critical ," which would allow an attacker to take full control of the affected machine, while the remaining seven are listed as " Important ," the second-highest rating in Microsoft's four-point scale (" Moderate " and " Low " being the remaining two).

This is a large update that will give IT admins plenty to do this week. All three critical vulnerabilities affect all Windows OS versions, including XP, Vista, Windows 7, and Windows Server 2008, as well as several versions of Internet Explorer.

What exactly all these security fixes will address hasn't yet been disclosed, though six of them deal with Remote Code Execution, three with Elevation of Privilege, and one addresses a Tampering vulnerability. Two of the updates -- including one ranked as Critical -- will require a system restart, while the remaining eight may require rebooting, Microsoft said.

Advance Notification

Around the web