Microsoft fixes 12 security vulnerabilities

Microsoft on Tuesday fixed twelve security vulnerabilities in Windows, Office and Internet Explorer.

One of the patches included in the Internet Explorer update addressed the zero-day vulnerability that used to plague older versions of IE.

Speaking on the issue, director of security operations for nCircle Andrew Storms said, “Topping today's news from Microsoft is the fix for a critical zero-day bug in Internet Explorer.”

Microsoft released six security bulletins. The Internet Explorer bulletin fixed five holes that could let an attacker to remotely take control of a system in drive-by download attacks.

Another critical bulletin fixes vulnerabilities in windows Internet Authentication Service, while the third one plugs holes in Microsoft Office Project.

Three bulletins rated important plug holes in Windows as well as WordPad and Office text converters

Microsoft has issued 74 bulletins in 2009 to fix 189 vulnerabilities as compared with 78 bulletins fixing 155 vulnerabilities last year.