Microsoft Readies Four Critical Patches for April Patch Tuesday

Pulkit Chandna

Microsoft will deliver six security bulletins on April 10, 2012 as part of its monthly security update, the Redmond-based company said in an advance notification Thursday. The six security bulletins will, between them, address 11 vulnerabilities in Windows, Office, Internet Explorer, SQL Server. .NET Framework and Forefront Unified Access Gateway. Hit the jump for more.

While the number of security bulletins scheduled for this month’s Patch Tuesday is the same as last month, the number of those rated “critical” (Microsoft’s highest severity rating) is much higher. Where last month’s Patch Tuesday brought just one critical bulletin, this month’s update will include as many as four. The remaining two security bulletins are both rated “important.”

"Bulletin 1 will be the highest priority. It is a critical vulnerability affecting all versions of Internet Explorer (6,7,8,9) on their respective platforms XP, 2003, Win7 and 2008 both 32 and 64 bit,” Qualys CTO Wolfgang Kandek told CSO’s Bill Brenner in an email.

But the one that stands out from the rest is Bulletin 4, which Kandek described as “challenging” in his email for the sheer number of applications it addresses. “It is critical and applies to all versions of Microsoft Office, but also to SQL Server and other Microsoft server products,” he said.

Around the web