Microsoft next week will release nine bulletins as part of its Patch Tuesday monthly updates to address 13 vulnerabilities
in its software.
The software giant's September 2010 bulletins, to be released Sept. 14, will address flaws found in Windows, Internet Information Services (IIS) and Microsoft Office. Four of the updates, which are considered critical, will remedy vulnerabilities in Microsoft Office and Windows.
Based on the September advance notification published Thursday on the Microsoft Security Response Center (MSRC) blog, it's unlikely that Microsoft will address the Internet Explorer CSS bug that came to light earlier this week. The flaw, specific to Internet Explorer 8, can enable an attacker to steal data or force the victim to post to Twitter or other social networks.
The number of bulletins slated for release is down considerably from last month. The August 2010 Microsoft security bulletins addressed a record-tying 34 vulnerabilities with 14 bulletins. These updates patched flaws in Microsoft Office and Internet Explorer, among other applications.
Earlier this month Microsoft released the Enhanced Mitigation Experience Toolkit (EMET) version 2.0. This tool can help users to manage risk while transferring over to modern products and helps to improve security in third-party applications.
Microsoft next week will also release a new version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and its Download Center.