One critical patch expected from Microsoft on tomorrow\'s Patch Tuesday

Microsoft will release six patches tomorrow, with one fix for a 'critical' flaw.

On its third Patch Tuesday of 2012, it confirmed that the patches will affect each of the supported versions of windows in addition to seven patches for the appliance development platform Visual Studio and Expression Design.

The critical patch is for a remote code execution flaw in Windows, five patches are rated as 'important' and canopy elevation of privilege, remote code execution and denial of service vulnerabilities. One 'moderate' flaw is in Windows.

Paul Henry, security and forensic analyst, Lumension, said: “This month's bulletins impact the whole operating system family and while six bulletins represents a light-weight load of patches, this Tuesday may be disruptive on the subject of required reboots.”

Wolfgang Kandek, CTO of Qualys, said: “Bulletin one would be the most significant; it's critical rated remote code execution and is applicable in all versions of Windows from XP to the most recent Windows 7 and Server 2008R2.

“The other remote code execution vulnerability is in Bulletin five, rated important because opening a malicious file is needed for Expression Design, an application competing with Adobe's graphics tools.”