Microsoft has just revealed this month’s Security Bulletin Advanced Notification for December 2013, revealing that it plans to release 11 security bulletins to fix flaws across its product range.Five of the bulletins are supposed to address critical vulnerabilities, Microsoft said in the advisory, but only limited information has been provided, as the company struggles to keep users on the safe side. As usual, full details about these bulletins will be provided on Patch Tuesday.
Among the products that’ll get patched next week, it’s worth mentioning Office, Windows, Lync, Internet Explorer, Exchange, Visual Studio Team Foundation Server 2013 and ASP.NET SignalR.
Most of the found flaws would allow remote code execution, while a bunch of them are only providing attackers who exploit them with elevation of privilege.
As usual, all patches will be delivered via the integrated Windows Update, so no user interaction will be required.