Patch Tuesday heads-up: Five 'critical' bulletins on tap

Microsoft's September batch of security updates will include fixes for a multiple "critical" vulnerabilities affecting the Windows operating system.

In all, the software maker will release five bulletins with patches for a range of flaws that could expose users to remote code execution attacks.

[ SEE: Microsoft confirms IIS zero-day flaw; Exploit code published ]

The flaws affected all supported versions of Windows, including Windows Vista and Windows Server 2008.

Microsoft describes a "critical" vulnerability as one whose exploitation could allow the propagation of an Internet worm without user action so it's important that Windows users treat next Tuesday's updates with the highest priority.

It is not yet clear if this month's patches will cover the FTP in IIS vulnerability that was disclosed with exploit code earlier this week.