Microsoft Subnet An independent Microsoft community View more

Microsoft to fix 23 security holes in 8 patches on Tuesday

Next Patch Tuesday will be moderately big, fixing holes in IE, Windows, Forefront and .Net/Silverlight

On Tuesday, Microsoft will release eight security bulletins, two rated critical and six rated important, to fix 23 vulnerabilities. These will fix holes in Internet Explorer, .NET Framework & Silverlight, Microsoft Windows, Microsoft Forefront UAG, and Microsoft Host Integration Server. The critical patches affects all supported versions of Windows: XP, Vista and Windows 7, Windows Server 2003, 2008 and R2 (not Server Core), and all supported versions of IE, including IE 9. There's a sprinkling of patches rated important affecting all versions of Windows, too. Interestingly, Microsoft will issue a rare patch, rated important, for its VPN product, Forefront Unified Access Gateway 2010, to fix a hole that could allow remote code execution. Nearly all will require a restart ... fun stuff. Paul Henry, security and forensic analyst for Lumension, points out that Microsoft also released today SP3 for Office 2007 and SharePoint 2007. "SP3 includes a roll up of previously patched issues, as well as newly discovered issues from the lifecycle of SP2," he says.

Editors' Picks
Join the discussion
Be the first to comment on this article. Our Commenting Policies