-->
Microsoft today patched 11 vulnerabilities, including one in Office that hackers will quickly exploit to launch drive-by attacks, said security experts.
As expected, Microsoft did not ship a fix for the flaw in Internet Explorer (IE) that criminals are currently using to hijack Windows PCs.
Of the 11 flaws addressed in three separate updates, only one was pegged as "critical," Microsoft's top ranking in its four-step scoring system. The remaining 10 were all marked "important," the second-highest rating.
"The one that gives me the heebie-jeebies this month is the Office update," said Andrew Storms, director of security operations at nCircle Security. "The RTF vulnerability can be triggered simply by viewing a message in Outlook, so all you have to do is receive a [malicious] message. Then the game is over."
Storms was referring to MS10-087 , a five-patch update for Office XP, 2003, 2007 and 2010 on Windows,...
The update fixes critical flaws including issues that could cause Office 2011 applications to stop responding or unexpectedly quit while in use.
|
|
The most serious of the bulletins is MS10-087, which received Microsoft's highest rating of 'Critical.' “The bulletin is rated Critical for Office 2007 and |
Just one of the three updates was marked critical, the highest threat ranking in Microsoft's four-step system. The remaining updates were rated "important,"
|
Just three patches were released this month: the sole 'critical' release affects Microsoft Office versions 2007 and 2010, while the two other updates are
|
|
I confirmed with Microsoft today that this month's Office update is the only DLL hijacking patch issued by Microsoft. Jerry Bryant, group manager for |
Prepare for another downloadfest. Lots of new critical security updates coming out tomorrow from MS & Adobe. DRINK! - 
Critical #Microsoft and Adobe security vulnerability patches tomorrow , www.cachesafe.com/updates 
Adobe to release critical updates as Microsoft limits Patch Tuesday - SC Magazine UK
Adobe to release critical updates as Microsoft limits Patch Tuesday - SC Magazine UK
No critical fixes in Microsoft Patch Tuesday updates this month -