‘Critical’ MS Exchange, Windows Patches on Tap

Microsoft plans to release three security bulletins on Tuesday, May 9, to cover several code execution flaws in Windows and the enterprise-facing Microsoft Exchange messaging and collaboration product.

The patches will carry a “critical” rating and will require a restart after installation, Microsoft said in its advance notification.

Microsoft typically applies a “critical” rating to high-priority vulnerabilities that can be exploited to allow the propagation of an Internet worm without any user action.

Click here to read more about recent fixes to Microsoft’s Internet Explorer.

Two of the three bulletins will provide fixes for flaws in the Windows operating system, and it is very likely that a cumulative Internet Explorer fix could be included.

Several major flaws in IE are on the waiting-for-fixes list.

Based on 85 advisories published by Secunia between 2003 and 2005, about 25 percent of IE bugs remain unpatched.

Read the full story on eWEEK.com: ‘Critical’ MS Exchange, Windows Patches on Tap