Largest Microsoft 'patch Wednesday' coming this week

Microsoft has prepared a bumper batch of fixes for security holes in its applications and operating systems, which will be released as part of the November 'Patch Tuesday' (Wednesday Australian time) regular update round.

No fewer than sixteen security bulletins were published by Microsoft over the weekend, with several requiring system restarts.

In comparison, October saw eight patches released and September just four. The patches in the November set of updates are spread out among several Microsoft products however.

Microsoft's director of response communications, Tracey Pretorious, said the updates are for Windows, Internet Explorer, Office, Exchange, the .NET framework, the internet information services web server, remote desktop protocol, active directory federation services and kernel mode driver.

Five of the flaws are rated as critical by Microsoft, affecting old and new versions of Windows Server and client operating systems, as well as Internet Explorer 7, 8, 9, 10 and 11.

In four cases, the critical-rated vulnerabilities allow remote code execution by attackers, and in one, privilege elevation.

Office 2007 service pack three is also being patched, along with Word Viewer and the Office Compatibility Pack Service Pack.

SharePoint Server 2010, Exchange Server 2007, 2010 and 2013 will also need to be patched with a restart required against a flaw rated as important by Microsoft.

The patches will be available automatically from Windows update this Wednesday, with an update for the company's Malicious Software Removal Tool being sent down the wire as well.