Microsoft to fix three vulnerabilities today

Software giant Microsoft will patch three vulnerabilities today as part of its regular patching program, which keeps users’ software up-to-date. The first is a “critical” fix that supports all versions of Windows, with the second only an “important” fix that affects Windows Vista. Microsoft has said that the vulnerabilities to be patched could allow remote […]

Patrick Stafford 10 January, 2011

Software giant Microsoft will patch three vulnerabilities today as part of its regular patching program, which keeps users’ software up-to-date.

The first is a “critical” fix that supports all versions of Windows, with the second only an “important” fix that affects Windows Vista.

Microsoft has said that the vulnerabilities to be patched could allow remote code to be executed. “As always, we recommend that customers deploy these updates as soon as possible,” the company says.

The company has also identified a vulnerability within Internet Explorer that users should be aware of.

“The vulnerability exists due to the creation of uninitialised memory during a CSS function within Internet Explorer. It is possible under certain conditions for the memory to be leveraged by an attacker using a specially crafted web page to gain remote code execution,” it said in a blog post.