- V3 Apps
Microsoft is planning to launch four critical and three important patches for March's Patch Tuesday delivery.
The majority of this month's patches focus on preventing drive-by and end-user attacks.
This month's patches come during a hectic time for IT admins looking to patch up vulnerabilities.
"IT admins can't seem to catch a break this year. First, the never ending stream of Java issues that has kept folks on their toes since January," said security and forensic analyst at Lumension Paul Henry.
"Now they've got another busy month of patches ahead of them, with seven total patches from Microsoft, four of which are critical."
March's patches come in the wake of a slew of discovered vulnerabilities pertaining to the Java platform. Earlier this year, security researchers found a slew of zero-day exploits within Java software.
For this month's Patch Tuesday, Henry recommends putting a priority on security bulletin number one. The bulletin focuses on remote code execution issues found in Internet Explorer 10, Windows RT, and Windows 8.
"What's particularly concerning to me is that this is a remote code execution issue that critically affects the latest version of Internet Explorer and in the two newest versions of Windows: Windows 8 and Windows RT. Fortunately, this issue has no known attacks in the wild," continued Henry.
Another alarming trend for IT admins could prove to be the fact that this month's patches focus on end-user systems. According to the senior product manager at Core Security, Alex Horan, having to patch end-user systems could prove a hassle to administrators.
"My concern in reviewing these updates isn't so much centered around the critical nature of the vulnerability, but rather the number of end-user patches that are required to shore them up," said Horan.
"These patches can be a hassle for users to deploy and have the potential to create a long enough delay where hackers can take advantage."
Redmond's patches come from its monthly Patch Tuesday program. Patches are expected to be released to the public on 12 March.