Microsoft to patch critical Windows vulnerabilities

Three bulletins are planned for March 10 as part of Microsoft's regularly scheduled monthly round of patches.

Microsoft plans to issue three bulletins, one rated critical March 10 as part of its regularly scheduled monthly updates.

SearchSecurity.com:
To get security news and tips delivered to your inbox, click here to sign up for our free newsletter.

In its advance notification issued Thursday, Microsoft said all supported versions of Windows would be affected by the update. As it does every month, the software giant said it would also update its Windows Malicious Software Removal Tool.

In February, Microsoft issued four bulletins addressing critical flaws in Internet Explorer 7 and Exchange and holes in SQL Server and its Office Visio diagramming software. The most critical vulnerabilities were in IE 7 and Exchange. The holes could be exploited remotely to gain access to critical files or conduct a denial-of-service attack.

Microsoft also recently issued an advisory addressing a Microsoft Excel zero-day flaw being actively targeted by attackers. The software giant gave no indication that it would be patching the vulnerability next week. Currently Microsoft is advising customers to use the Microsoft Office Isolated Conversion Environment (MOICE) when opening Excel files from unknown or un-trusted sources.

Dig deeper on Windows Security: Alerts, Updates and Best Practices

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close