Patch Tuesday is again just around the corner, and while it contains some important updates for both Windows and Office, it's a fairly small update compared to last month when Microsoft patched 22 security holes. This time around that number's been reduced to just four, which have been rolled into three security security bulletins. Only one of those is rated as "Critical" while the other two are rated "Important." That doesn't mean you should take them lightly, however.
"The upcoming Patch Tuesday includes a fix for a DLL Hijacking vulnerability in the Microsoft Groove application," said HD Moore, Rapid7's chief security officer and Metasploit chief architect. "This was one of the hundreds of flaws discovered last year by both Rapid7 and another security firm. I am glad to see that Microsoft is making progress on these vulnerabilities and continuing to fix affected applications."
According to the preview advisory, all three security bulletins deal with remote code execution, which would allow an attacker to run malicious code on a victim's PC and gain control of their system.