Microsoft to fix PowerPoint, Forefront vulnerabilities

Microsoft will issue three bulletins next week, repairing 11 vulnerabilities in Office and the Forefront Unified Access Gateway.

In the software giant's Advance Notification released Thursday, Microsoft said one bulletin addressing Office vulnerabilities is rated "critical." The critical bulletin affects Microsoft Office 2007 and 2010.

A bulletin addressing a flaw that could enable an elevation of privileges in the Forefront UAG 2010 is rated "Important." A third update, rated "important" will repair errors in Microsoft PowerPoint that could be exploited remotely by an attacker.

The updates will be issued Tuesday as part of Microsoft's regularly scheduled monthly patching process.

Engineers are still working on a fix for a zero-day vulnerability in Internet Explorer being actively targeted in drive-by attacks. Microsoft issued an advisory on Tuesday warning of a memory allocation error, present in Internet Explorer 6, 7, and 8 could enable an attacker to execute code and gain access to a victim's machine.