Microsoft is gearing up to release a new slate of security bulletins designed to plug holes in a variety of its software products including Windows Vista Service Pack 1 and Windows XP Service Pack 3. Come December 9, 2008, the Redmond company will release a total of eight security bulletins, six of which labeled with a maximum severity rating of Critical.

“It is important to remember that while the information [here] is intended to help with your planning, because it is preliminary information, it is subject to change. As part of our regularly scheduled bulletin release, we’re currently planning to release eight security bulletins: six Microsoft Security Bulletins rated as Critical and two rated as Important,” informed Bill Sisk, Microsoft Security Response Center communications manager.

Four of the security bulletins impact Windows operating systems directly or default components of the platform, with Internet Explorer, Developer Tools and Software, Office, and Server solutions also being affected. Two critical updates will patch vulnerabilities in XP SP3, with Vista SP1 hit by a higher number of Critical vulnerabilities, namely three, which will be resolved by just as many security bulletins.

In addition to its own updates, Microsoft also collaborates closely with members of the security industry, in order to enable them to deliver protection against exploits targeting the patched vulnerabilities via their own solutions. This is done through the Microsoft Active Protections Program (MAPP).

“Microsoft provides vulnerability information to major security software providers in advance of each monthly security update release. Security software providers can then use this vulnerability information to provide updated protections to customers via their security software or devices, such as antivirus, network-based intrusion detection systems, or host-based intrusion prevention systems,” the company revealed.