Log in Register

Log in

Remember me?



Microsoft patches 68 vulnerabilities in Windows, Office, Edge, and more

Two of the patched flaws are already being exploited and three have been publicly disclosed

Microsoft has patched 68 vulnerabilities in Windows, Office, Edge, Internet Explorer and SQL Server, two of which have currently been exploited by hackers and three that have been publicly revealed.

The patches are covered in 14 security bulletins, one dedicated to Adobe Flash Player which is upgraded through Windows Update in Windows 10 and 8.1. Six of the bulletins are ranked critical and eight are ranked important.

The vulnerability, tracked as CVE-2016-7255, was publicly revealed by Google last week, only 10 days after notifying Microsoft about it. This caused a little bit of friction between the two companies.

Google gives vendors only seven days to repair vulnerabilities or to publish mitigation advice if those flaws are discovered to be exploited in active attacks. Microsoft disagrees with that policy and feels that Google's decision to make details about this vulnerability public put customers at increased danger.