Microsoft next week plans to deliver a security update, complete with 12 patches that plug 57 vulnerabilities.The bugs are currently affecting several Microsoft services and products including Windows, Internet Explorer, Windows Server, Microsoft Exchange and .Net Framework.
Five patches out of the 12 are rated as critical, which means that they will protect users from hackers, executing malicious code on an unprotected PC. Security researchers were two of the critical patches that address vulnerabilities in Internet Explorer, a common vector through which criminals serve malware.
“Internet Explorer patches are always a top priority, and this month we are going to get two Internet Explorer bulletins,” Andrew Storms, director of security operations at vulnerability and risk management firm nCircle, said in prepared comments. “That’s unusual because generally, when Microsoft patches IE, the patch is delivered as a single bulletin.”
The third critical patch, meanwhile, will apply a fix to Windows XP and Vista, in addition to Server 2003. The fourth relates to Microsoft Exchange, while the fifth solely affects Windows XP. The remaining seven patches are rated as important, users will have to install them manually.
The critical patches will, however, be automatically installed for any Windows user who has automatic updates enabled.