Microsoft Corp.'s first monthly patch day for 2005 will include security fixes for three vulnerabilities in Windows products, the software giant said Thursday.
As part of its advance notice mechanism, Microsoft said the maximum severity rating for the three updates is "critical." The security updates may require a restart.
It is not known whether all three flaws are "critical," and Microsoft is withholding details until the patches are released.
The next batch of patches is due Tuesday, Jan. 11.
Patches with "critical" ratings are reserved for flaws that the company considers "wormable." A critical vulnerability means that, in the default scenario on an Internet-facing PC, an attacker could exploit it in such a way that it spreads from machine to machine.
Microsoft has already confirmed it was investigating a warning from a Chinese community group called Xfocus Team that pointed to several high-risk vulnerabilities affecting multiple versions of Windows.
Information on those three flaws was also re-released by Symantec Corp. with a warning that proof-of-concept exploits were circulating.
News source:
ieXbeta
Full story:
View Here
Linear Mode
