Microsoft to Patch 25 Windows Vulnerabilities

Get ready for Patch Tuesday!

At the end of March, Microsoft released an out-of-band patch for a "serious flaw" affecting IE6 and IE7 because the vulnerability was said to be both critical and time sensitive. So what about the flaws that don't warrant an out-of-band patch?

CNet reports that Microsoft will next week release 11 security bulletins addressing a total of 25 vulnerabilities. Spread across Windows, Microsoft Office, and Exchange, five of the bulletins are addressing critical vulnerabilities, five are considered important, and the last is rated as moderate.

All five of the bulletins marked critical as well as three of the important bulletins affect vulnerabilities that allow for remote code execution. Exploit code for two of the vulnerabilities has already been released.

Windows 2000, XP, Vista, Windows 7, Server 2003, Server 2008, Office XP, Office 2003, 2007 Microsoft Office System and Exchange Server 2000, 2003, 2007, and 2010 will all be affected by next Tuesday's patches.

You need to be logged to post a comment

There are 16 Comments. B

Top Comments

14

formin , April 9, 2010 10:55 PM

lol love the pic of the "e" with the bandaid
14

nebun , April 9, 2010 10:28 PM

mycpumeltedOnly 25 vulnerabilities, that seems like an improvement.

still 25 too many...i wonder how many exploits are discovered on Apple OSX...yet the company keeps quiet, lol
14

superblahman123 , April 9, 2010 9:41 PM

Windows has vulnerabilities?! ;-)

Other Comments

14

superblahman123 , April 9, 2010 9:41 PM

Windows has vulnerabilities?! ;-)
13

mycpumelted , April 9, 2010 9:59 PM

Only 25 vulnerabilities, that seems like an improvement.
10

sliem , April 9, 2010 10:00 PM

It's not vulnerabilities, it's "exploitable weaknesses that stupid hackers found... why couldn't they just leave us alone?!"
14

nebun , April 9, 2010 10:28 PM

mycpumeltedOnly 25 vulnerabilities, that seems like an improvement.

still 25 too many...i wonder how many exploits are discovered on Apple OSX...yet the company keeps quiet, lol
14

formin , April 9, 2010 10:55 PM

lol love the pic of the "e" with the bandaid
-8

huron , April 9, 2010 11:00 PM

I know everyone likes to make fun of Windows, but isn't this about Internet Explorer, and primarily 6 and 7?

Shouldn't the comparisons be to Safari, Opera, Chrome, Firefox, etc?
1

jhansonxi , April 9, 2010 11:23 PM

sliemIt's not vulnerabilities, it's "exploitable weaknesses that stupid hackers found... why couldn't they just leave us alone?!"
These are not stupid hackers. Stupid hackers (more correctly called crackers or "black hats") would need the Windows source code. Windows is closed source.
-2

eddieroolz , April 10, 2010 2:13 AM

Not much of a splash here, just regular patch-up work.
3

falchard , April 10, 2010 2:17 AM

Why is this news? Microsoft does this atleast once a month.
1

qwerty45 , April 10, 2010 2:56 AM

Mac OSX is not worth hacking lol
0

soundefx , April 10, 2010 6:02 AM

When is updating a security hole big news?
3

Shadow703793 , April 10, 2010 6:17 AM

qwerty45Mac OSX is not worth hacking lol

Just wait till some one gets pissed off at Apple. All your iPhones/iPads/iTouces are belonging to us!
0

t1t4n1um , April 10, 2010 8:12 AM

and the other 50 billion bugs and vulnerabilities?
0

JohnnyLucky , April 11, 2010 2:34 AM

It just keeps happening over and over. I don't think there will ever be an end in sight.
-1

Regulas , April 11, 2010 2:35 AM

And since MS has their browser directly tied to kernel is one of the reasons Windows is such a Swiss Cheese OS.
1

Brent_NC , April 11, 2010 9:19 PM

How many people actually get impacted by this stuff? If you don't surf porn, warez or download cracked software does it really matter? I don't worry about CNN or Tom's hacking my computer.

I've never had a virus and actually never known any of my friends to get one. It really seems like those that do stupid things with their computers are the ones that end up getting nailed. Sounds fair to me.