Microsoft plans to release a "critical" security update for Office next week, one of three bulletins it will distribute as part of its monthly patch cycle.The other two updates are for Windows and are rated as "important", its second-highest ranking, the software giant said in an advisory on Thursday. The brief advisory is designed to give IT administrators advance notice to prepare for the patches once they are distributed. Further details about the flaws will be posted on Microsoft's security website, once the bulletins are issued on Tuesday morning.
Microsoft has had its share of zero-day exploits, or malicious software released the same day a flaw is made public, in applications in Office. Earlier this week, Microsoft's Word 2000, which is part of the productivity suite, was hit with a zero-day attack that could compromise systems remotely. The vulnerability can be exploited by the user opening a malicious document.
View: Full Article @ Silicon.com