On Thursday, Microsoft announced four security bulletins for next week. The announcement is intended as a heads-up for IT departments before Patch Tuesday. Four fixes are considered critical, six important, and one is moderate as ranked by the software giant.
Starting this month, Microsoft is sharing the technical details of new vulnerabilities to give software developers a catch to update affected products before the public announcement. And on Tuesday, Microsoft is expected to provide with each bulletin an “exploitability index” to help system administrators prioritize the patches.
Among the critical patches one each affects Windows, Internet Explorer, Microsoft Host Integration Server, and Microsoft Excel. All four could enable remote code execution if exploited.
Of the important patches, all six affect Windows, and could enable remote code execution or elevation of privilege if exploited.
The lone moderate patch affects Windows Office and could enable information disclosure if exploited.