Microsoft's latest security patch update, issued yesterday, includes five critical security fixes, of which three require the user to reboot their PC. One of the patches may cause applications to fail.
Software compatibility specialist ChangeBase has tested the patches using its Application Compatibility Lab and found 90 issues relating to the MS09-014 patch, which fixes four privately reported vulnerabilities and two publicly disclosed vulnerabilities in Internet Explorer.
According to Microsoft, the vulnerabilities could allow remote code execution if a user views a specially crafted web page using Internet Explorer or if a user connects to an attacker's server by way of the HTTP protocol. Users whose accounts are configured to have fewer user rights on the system could be less affected than users who operate with administrative user rights.
ChangeBase said the MS09-014 patch affects Browseui.dll, Danim.dll, Dxtmsft.dll, Iecustom.dll, Iepeers.dll, Inseng.dll, Jsproxy.dll, Mshtml.dll, Msrating.dll, Pngfilt.dll, Shdocvw.dll, Shlwapi.dll, Url.dll, Urlmon.dll, Wininet.dll, Iecustom.dll.
Read more on Operating systems software
Microsoft has issued six security bulletins for December, bringing the total for 2009 to 74, compared with 77 in 2008, 69 in 2007 and 78 in 2006.