Office, Internet Explorer and Windows set for critical updates

Data Joe Curtis

10:04, June 6 2014


Patch Tuesday: How could you be affected by the latest bulletins?

Microsoft is due to deliver two critical security fixes for Office, IE and Windows in June's Patch Tuesday next week.

The two bulletins will address a pair of remote code execution flaws also affecting Lync and will be accompanied by five others rated as important by Redmond.

In its advanced notification post ahead of next week's Patch Tuesday, Microsoft explained one of the critical updates addresses a vulnerability in IE8 that allows remote hackers to execute attacks via JavaScript code - though the firm was quick to add it hasn't seen this attack happen yet.

The second critical bulletin addresses at least one flaw present in Windows, Office and Lync, though it won't publish specifics until after the patch has been issued.

But Russ Ernst, director of product management at patch management firm Lumension, said its impact would be wide-ranging: "Get ready for what looks like a far-reaching, critical bulletin in number two. Its impact list includes all versions of Microsoft Windows, Office 2007 and 2010 and Lync 2010 and 2013.

IE was affected last month too, with an out-of-band patch issued, a point fix released and a vulnerability revealed without a Microsoft fix by HP's Zero-Day Initiative.

Ernst added: "Last month, IE saw a lot of activity.We will have to wait and see if June Patch Tuesday is a cumulative update for the popular browser but odds are it will be."

Redmond has confirmed it will release the latest round of updates on Tuesday, June 10 at approximately 6pm UK time.

get a cbr Cyber Security weekly update

Terms & Conditions & Privacy Policy.


Post a comment

Comments may be moderated for spam, obscenities or defamation.