By Dawn Kawamoto, 8 September 2006 09:15
NEWS
Microsoft plans to release a "critical" security update for Office next week, one of three bulletins it will distribute as part of its monthly patch cycle.
The other two updates are for Windows and are rated as "important", its second-highest ranking, the software giant said in an advisory on Thursday. The brief advisory is designed to give IT administrators advance notice to prepare for the patches once they are distributed.
Further details about the flaws will be posted on Microsoft's security website, once the bulletins are issued on Tuesday morning.
Microsoft has had its share of zero-day exploits, or malicious software released the same day a flaw is made public, in applications in Office. Earlier this week, Microsoft's Word 2000, which is part of the productivity suite, was hit with a zero-day attack that could compromise systems remotely. The vulnerability can be exploited by the user opening a malicious document.
And in July, an Excel vulnerability was the target of a zero-day attack. In that case, a system was at risk if a user opened a malicious Excel database document.
Dawn Kawamoto writes for CNET News.com
In order to post a comment you need to be registered and logged in.
Log in or create your silicon.com account below