In their advance notification, published last week, Microsoft unveiled the details of the very first Patch Tuesday of this new year. The details show that Microsoft seems to be redirecting their security strategy after much success in the year 2011.
There are seven bulletins which have been released by the company; and out of seven, six bulletins target Windows operating system, Windows XP Service Pack 3 and the later versions. The seventh bulletin targets another information disclosure issue present in Microsoft developer tools software.
The bulletin that works on the remote code execution issue in the Media Player has been rated "critical" by the global software giant. Another bulletin rated "important" has been described as a "Security Feature Bypass," reports Network World.
According to Lumension security and forensic analyst Paul Henry, from this list, top priority is the out-of-band patch launched on December 29th - specifically needed by those who have "web based assets on the ASP.net framework."
Regarding the efforts of Microsoft, Henry commented, "With an overall reduction in critical issues in 2011, we can anticipate Microsoft will bolster defense-in-depth efforts and likely increase the number of patches addressing important issues, such as privilege escalation vectors."