Microsoft plans to issue three bulletins, one rated critical March 10 as part of its regularly scheduled monthly updates.
In its advance notification issued Thursday, Microsoft said all supported versions of Windows would be affected by the update. As it does every month, the software giant said it would also update its Windows Malicious Software Removal Tool.
In February, Microsoft issued four bulletins addressing critical flaws in Internet Explorer 7 and Exchange and holes in SQL Server and its Office Visio diagramming software. The most critical vulnerabilities were in IE 7 and Exchange. The holes could be exploited remotely to gain access to critical files or conduct a denial-of-service attack.
Microsoft also recently issued an advisory addressing a Microsoft Excel zero-day flaw being actively targeted by attackers. The software giant gave no indication that it would be patching the vulnerability next week. Currently Microsoft is advising customers to use the Microsoft Office Isolated Conversion Environment (MOICE) when opening Excel files from unknown or un-trusted sources.