Microsoft has issued the April release of its monthly security update, delivering 11 bulletins which fix 25 security vulnerabilities in Windows, Office and Exchange.
Five of the 11 bulletins address vulnerabilities labelled as 'critical' which, if exploited, could allow an attacker to remotely execute code on the targeted system without user notification.
The 'critical' bulletins address flaws in Windows 2000, XP, Server 2003, Vista, Windows 7 and Server 2008 R2.
Another five bulletins address issues rated 'important'. These include flaws in Windows, Exchange Server and Office XP 2003 and 2007. Risks include remote code execution, elevation of privilege and denial-of-service attacks.
The last of the bulletins is rated 'moderate' and addresses a spoofing vulnerability in the ISATAP component for Windows XP, Server 2003, Vista and Server 2008 prior to R2. Windows 7 and Server 2008 R2 are not at risk.
And Apple IS working on virtual reality headset
Indian bank falls victim to suspected cyber attack from North Korea's Lazarus Group
Would you settle for door locks or invest in a burglar alarm too?
Australian government to require technology and communications companies to provide access to messages
New bill avoids demanding 'backdoors' in encryption, but includes measures to compel companies to provide access to encrypted communications