September's Patch Tuesday leaves users waiting for a fix to defend against a zero-day exploit in Microsoft Word, targeted by malware authors over recent days.

Microsoft released three updates yesterday to address a critical flaw in Microsoft Publisher, an important security update for the pragmatic general multicast (PGM) networking communications protocol and a less serious (moderately rated) security fix for software bugs in Microsoft indexing service. A summary of Microsoft patches can be found here.

In related news, Macromedia Flash Player from Adobe comes bundled with various versions of Win XP, so users need to apply a security fix from Adobe issued on Tuesday, Microsoft notes. ®

Related stories

• Zero day Word flaw exploited by Trojan (9 July 2008)
• Third unpatched vuln menaces Word (15 December 2006)
• Trojan targets unpatched Word flaw (again) (11 December 2006)
• Unpatched Word flaw menaces civilisation (6 December 2006)
• MS preps six fixes for November Patch Tuesday (10 November 2006)
• Windows Update glitches derail Patch Tuesday (11 October 2006)
• Busy Patch Tuesday looms (6 October 2006)
• Another day, another zero-day MS exploit (28 September 2006)
• MS releases emergency IE fix (27 September 2006)
• MS mulls emergency IE fix (26 September 2006)
• Unofficial IE patch saves humanity (25 September 2006)
• Smut sites use IE exploit to spread spyware (21 September 2006)
• Warnings grow over unpatched IE flaw (18 September 2006)
• Trojan targets 0-day Word vuln (5 September 2006)
• MS finally patches IE patch (25 August 2006)
• Unpatched enterprise security bugs proliferate (24 August 2006)
• Microsoft flaw fix opens users to attack (24 August 2006)
• Vista joins MS patch treadmill (18 August 2006)
• MS releases dirty dozen (9 August 2006)
• When PowerPoint presentations attack (17 July 2006)
• Trojan exploits unpatched Word vulnerability (22 May 2006)