Microsoft has fixed 23 vulnerabilities in its Windows OS and Office productivity suite with 12 security patches, nine of them described as “critical” by the company.
Released as part of its monthly scheduled patching cycle, the patches address 20 flaws in Windows and three in Office.
The vulnerabilities tackled include a well publicised security fault in the PowerPoint presentation application, which is already being exploited in the wild.
In addition, there are threats just discovered by Microsoft which the company has acted upon before being publicised by security researchers.
Internet security software provider McAfee said the number of threats patched was the highest number yet since Microsoft started its monthly patching programme.
McAfee said 11 of the flaws were already publicised before Microsoft issued a patch for them yesterday.
Of particular concern to Microsoft is security bulletin MS06-040, which is a hole in Windows which allows remote attackers to take over users’ PCs using Windows file sharing technology.
The company says this flaw is already being used to attack users’ systems.
Vote for your IT greats
Who have been the most influential people in IT in the past 40 years? The greatest organisations? The best hardware and software technologies? As part of Computer Weekly’s 40th anniversary celebrations, we are asking our readers who and what has really made a difference?
Vote now at: www.computerweekly.com/ITgreats