Next week's Patch Tuesday will see Microsoft issue three updates that fix "critical" security vulnerabilities in Windows, Office and the .Net framework. The critical designation is Microsoft's most severe rating and usually applies to flaws that can allow a computer to be hijacked with little or no interaction on the part of the user.

All the critical vulnerabilities could lead to the remote execution of code, according to an advanced bulletin (http://www.microsoft.com/technet/security/bulletin/ms07-jul.mspx) posted Thursday on Microsoft's website. The critical patches apply to Excel, Windows 2000 Service Pack 4 and the .Net framework, which is incorporated into most versions of Windows.

Two additional patches on tap for next week will fix "important" vulnerabilities in Office, Publisher and Windows XP Professional. A sixth patch will plug a "moderate" hole in Windows Vista.

Last month, Microsoft issued six patches, four of them for critical flaws.

The software maker has long been in the habit of releasing security updates on the second Tuesday of each month and issuing an advanced outline of the patches on the Thursday before. Starting last month, Microsoft began offering additional details so that IT administrations can better prepare for the fixes. ®

Related stories

Microsoft delivers critical fixes for Windows, IE and Excel (14 August 2007)
http://www.channelregister.co.uk/2007/08/14/august_patch_tuesday/
Microsoft plans six critical patches (9 August 2007)
http://www.channelregister.co.uk/2007/08/09/microsoft_august_patch_tuesday/
Three critical flaws mark July Patch Tuesday (11 July 2007)
http://www.channelregister.co.uk/2007/07/11/ms_patch_tuesday/
SSL bug stars in MS June patch batch (13 June 2007)
http://www.channelregister.co.uk/2007/06/13/june_patch_tuesday/
Vista and IE 7 to receive 'critical' fixes on Patch Tuesday (7 June 2007)
http://www.channelregister.co.uk/2007/06/07/microsoft_june_patch_tuesday/
Seven flaws lanced in MS patch batch (9 May 2007)
http://www.channelregister.co.uk/2007/05/09/ms_may_patch_tuesday/
Microsoft preps seven bulletins for Patch Tuesday (3 May 2007)
http://www.channelregister.co.uk/2007/05/03/patch_tuesday_outline/
Attacks exploit Windows DNS server flaw (13 April 2007)
http://www.channelregister.co.uk/2007/04/13/windows_dns_flaw/
Microsoft zero-days said to target Office and Windows (11 April 2007)
http://www.channelregister.co.uk/2007/04/11/new_microsoft_zerodays/
Five critical reasons to update Windows today (11 April 2007)
http://www.channelregister.co.uk/2007/04/11/ms_april_patch_tuesday/
MS cursor patch fix pushes into Patch Tuesday litter (10 April 2007)
http://www.channelregister.co.uk/2007/04/10/ms_april_patch_tuesday_pre-alert/
MS releases emergency cursor bug fix (4 April 2007)
http://www.channelregister.co.uk/2007/04/04/ms_cursor_bug_patch/
MS plans emergency update to fix blinking cursor bug (2 April 2007)
http://www.channelregister.co.uk/2007/04/02/ms_cursor_bug_fix/
Microsoft gives pirates thumbs up, and open source gets thumbs down (15 March 2007)
http://www.channelregister.co.uk/2007/03/15/channel_weekly_1503/
MS skips March Patch Tuesday (9 March 2007)
http://www.channelregister.co.uk/2007/03/09/ms_skips_patch_tuesday/
Microsoft probes new Office vulnerability (15 February 2007)
http://www.channelregister.co.uk/2007/02/15/office_vuln/