Microsoft Subnet An independent Microsoft community View more

Microsoft to fix 23 security holes in 8 patches on Tuesday

Next Patch Tuesday will be moderately big, fixing holes in IE, Windows, Forefront and .Net/Silverlight

On Tuesday, Microsoft will release eight security bulletins, two rated critical and six rated important, to fix 23 vulnerabilities. These will fix holes in Internet Explorer, .NET Framework & Silverlight, Microsoft Windows, Microsoft Forefront UAG, and Microsoft Host Integration Server. The critical patches affects all supported versions of Windows: XP, Vista and Windows 7, Windows Server 2003, 2008 and R2 (not Server Core), and all supported versions of IE, including IE 9. There's a sprinkling of patches rated important affecting all versions of Windows, too. Interestingly, Microsoft will issue a rare patch, rated important, for its VPN product, Forefront Unified Access Gateway 2010, to fix a hole that could allow remote code execution. Nearly all will require a restart ... fun stuff. Paul Henry, security and forensic analyst for Lumension, points out that Microsoft also released today SP3 for Office 2007 and SharePoint 2007. "SP3 includes a roll up of previously patched issues, as well as newly discovered issues from the lifecycle of SP2," he says.

Insider Shootout: Best security tools for small business
Join the discussion
Be the first to comment on this article. Our Commenting Policies