Microsoft promises yet another monster Patch Tuesday
Microsoft is planning to unleash a bumper Patch Tuesday next week, with the company rolling out 13 bulletins addressing 26 vulnerabilities. Of those 13 bulletins, five have been rated critical - Microsoft’s highest security alert - due to the risk of remote code execution. A further seven are pegged as important, the next rating down, and one has been classed as moderate.
According to Microsoft’s advanced security bulletin, 11 of the updates will affect various versions of Windows - from XP to 7 - while the remaining two are aimed at exploits in Office XP and Office 2003 on Windows, and Office 2004 for Mac.
In order to cut down the chances of exploits the exact details of the fixes will be kept secret until Tuesday. However, it’s almost certain Microsoft will patch a recently discovered 17-year-old bug in the kernel of all 32-bit versions of Windows that could be used to hi-jack PCs. Microsoft had issued an advisory on the bug last week, after it was flagged up by a researcher.
The number of updates will no doubt prove to be a headache for many IT managers. It could , however, have been much worse as two weeks ago Microsoft was forced to release an out-of-sequence update for Internet Explorer in order to address a flaw used by those wily oriental hackers that attacked Google’s servers.