The 'Patch Tuesday' release contains 11 bulletins for Windows, Office and Internet Explorer, six of which address vulnerabilities rated by Microsoft as 'critical'.
Three browser vulnerabilities could be exploited to allow an attacker to remotely execute code in either IE6 or IE7. A fourth flaw was rated 'critical' for IE6 but given a less severe 'important' rating for IE7.
Microsoft also patched critical vulnerabilities in the WebDAV component of Windows XP and Vista, along with critical flaws in Word for both Windows and Mac.
McAfee researcher Craig Schmugar told www.vnunet.com that the flaws covered by the monthly update highlight the perils of web-based attacks.
"Today's patches underline the need to be aware when opening files, and the risk of surfing the web unprotected," he said.
"Many of the vulnerabilities could be exploited if a Windows user simply opens a file or visits a malicious or compromised website. These are favourite attack methods among cyber-criminals."
Microsoft noted that none of the February security bulletins affects its two newest releases, Windows Vista SP1 and Windows Server 2008.
Microsoft pushes out 17 security fixes
Got a news tip for our journalists? Share it with us anonymously here.
Add techpartner.news as your trusted source
Partner Content
Think Technology Australia deliver massive ROI to a Toyota dealership through SharePoint-powered, automated document management
_(25).jpg&h=142&w=230&c=1&s=1)
Shortfalls in cyber expertise deepen the cost and complexity of security incidents
Fabric workshops help partners tap into data services demand growth.
Promoted Content
Have ticket queues become your quiet business risk?
_(30).jpg&h=142&w=230&c=1&s=1)
Promoted Content
Why Australia’s Industrial Leaders Are Turning to Dynamic Aspect for Dynamics 365 Business Central
.jpg&w=100&c=1&s=0){kind=logo}
