Microsoft has issued the April release of its monthly security update.
The company on Tuesday issued 11 bulletins which fix a total of 25 security vulnerabilities in Windows, Office and Exchange.
Of the eleven bulletins, five address vulnerabilities which have been labelled by the company as 'critical.' If exploited, the vulnerabilities could potentially allow an attacker to remotely execute code on the targeted system without user notification.
Each of the five bulletins addresses vulnerabilities in the Windows operating system itself. While the severity of the vulnerabilities can very by version, the update includes fixes for flaws deemed critical in Windows 2000, XP, Server 2003, Vista, Windows 7 and Server 2008 R2.
Another five bulletins address issues rated 'important' by Microsoft. Those updates include flaws in Windows as well as Exchange Server and the Office XP. 2003 and 2007 versions. Risks of the vulnerabilities included remote code execution, elevation of privilege and denial of service attacks.
The last of the bulletins was rated as a 'moderate' risk and addressed a spoofing vulnerability in the ISATAP component for Windows XP, Server 2003, Vista and Server 2008 versions prior to R2. Windows 7 and Server 2008 R2 have been confirmed to not be at risk.
April's Microsoft Patch Tuesday sees 11 fixes
By
Shaun Nichols
on Apr 14, 2010 2:39PM
In The Spotlight
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content

Promoted Content
How to prepare for the increasing demand for cloud-ready partners

Promoted Content
Is business nbn Enterprise Ethernet the future of business connectivity for MSPs?

Promoted Content
Why rock-solid MSPs services require unified infrastructure monitoring

Promoted Content
Microsoft, Yealink and Alloy’s roadshows fire up the Australian channel

Promoted Content
Tradewinds has turned unified communications into an easier upsell