Microsoft is preparing to issue eight security bulletins on Tuesday as part of the firm's monthly patch release cycle.
Each bulletin covers an application component, and spans one or multiple security vulnerabilities.
Three of the bulletins affect Windows, at least one of which is rated 'critical'. Microsoft also plans to issue three bulletins for Office with at least one rated 'critical'.
A bulletin that affects Windows and the Visual Studio development suite, and one that affects Windows and Office, are both rated 'important'.
Microsoft did not disclose whether the update will include a patch for three vulnerabilities in Word that attackers have been actively exploiting since early December.
The company has previously pointed out that hackers are only using the flaw in highly targeted attacks that reach only a few users.
The advanced notification about the patch release is designed to allow users and enterprise IT staff to make the necessary preparations. The updates are slated for release around 10am Pacific Time on 9 January.
Microsoft prepares eight January patches
By
Tom Sanders
on
Jan 8, 2007 9:39AM

Vendor to plug 'critical' vulnerabilities in Office and Windows.
Got a news tip for our journalists? Share it with us anonymously here.
Sponsored Whitepapers
Extracting the value of data using Unified Observability
Planning before the breach: You can’t protect what you can’t see
Beyond FTP: Securing and Managing File Transfers
NextGen Security Operations: A Roadmap for the Future

Video: Watch Juniper talk about its Aston Martin partnership