March 08, 2012

Microsoft to patch seven security issues with six bulletins

Microsoft next week plans to release six patches, including one for a "critical" vulnerability affecting all supported versions of the software giant's operating system.

In total, the seven flaws being fixed as part of Microsoft's monthly security update affect Windows, application development platform Visual Studio, and graphics software Expression Design.

The critical high-priority bulletin addresses a weakness in Windows that could lead to remote code execution.

“The fact that all modern versions of the Windows Server and the XP/Vista/7 operating systems can be remotely compromised makes Tuesday's ‘critical' Microsoft patch attractive to any hacker hoping to reverse engineer it," said Alex Horan, senior product manager of security intelligence at Core Security. "This is the holy grail of exploits."

The patches are due about 1 p.m. EST on Tuesday.

Related Articles
Related Topics

More in News

Twitter begins rollout of two-factor authentication to limit account takeovers

Following a series of high-profile Twitter account hijacks, the microblogging service finally has delivered two-factor authentication.

Commission offers suggestions for stemming online spy threat from China

The 100-page report mostly addresses alleged Chinese cyber espionage operations, and suggests it's time for U.S. government agencies and corporations to consider more proactive approaches, possibly including hack-backs.

Researchers link "Sunshop" group to recent espionage attacks

The IE exploit was most recently used in watering hole attacks directed at the U.S. Department of Labor website.