Microsoft Releases Biggest Security Update of the Year

Microsoft has had its biggest 'Patch Tuesday' of the year so far, issuing 10 updates to fix 34 vulnerabilities in the company's software products.

Of the 10 bulletins, three are rated 'critical', with the remaining seven rated 'important'.

The critical bulletins include the MS10-035 patch, designed to fix six vulnerabilities in Internet Explorer, and the MS10-033 patch for DirectShow.

Other products affected by the bulletins are Windows, Office (which has 14 vulnerabilities in Excel being addressed), Internet Information Services and SharePoint.

Microsoft has also released a patch for the bug that enabled a Dutch security researcher to hack into Internet Explorer 8 as a part of the Pwn2own contest, winning himself $10,000. Apple and Mozilla patched their respective web browsers against this exploit last month.

Dave Marcus, director of security research and communications at McAfee Labs stated: “These vulnerabilities could be exploited to booby-trap websites, Office and Windows Media files to gain control over vulnerable computers simply by tricking victims into opening a malicious file or clicking a malicious link”.