MS Patch Tuesday heads-up: 25 holes in Windows, Office

Summary:Five of the 11 bulletins will be rated "critical," Microsoft's highest severity rating. The flaws affect all versions of Windows, including the company's newest Windows 7 operating system.

Microsoft plans to release 11 security bulletins on Tuesday April 13, 2010 to fix 25 documented vulnerabilities that expose Windows users to remote code execution attacks.

Five of the 11 bulletins will be rated "critical," Microsoft's highest severity rating.  The flaws affect all versions of Windows, including the company's newest Windows 7 operating system.

The vulnerabilities will address security holes in Windows, Microsoft Office, and Microsoft Exchange, according to Jerry Bryant, a group manager in Redmond's security response center.

follow Ryan Naraine on twitter

Bryant also confirmed that the April batch of patches will include fixes for two publicly known issues:

[ SEE: Hacker exploits IE8 on Windows 7 to win Pwn2Own ]

The Internet Explorer flaw exploited at this year's Pwn2Own contest will not be patched this month. Microsoft typically alternates between patching OS and client software vulnerabilities which means the next IE patch isn't scheduled until May 4th, 2010 at the earliest.

Windows users can find all the affected software and severity ratings in the Microsoft's advance notice summary.

If you're on Twitter, you can receive updates from the MSRC at the new @MSFTSecResponse account.

Topics: Microsoft, Operating Systems, Security, Software, Windows

About

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content managem... Full Bio

zdnet_core.socialButton.googleLabel Contact Disclosure

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.