Patch Tuesday: 2 bulletins

In line with its advance notification, Microsoft issued 2 security updates, fixing flaws in Windows and Office. The company also warned about a new vulnerability in Internet Explorer.

Both patches issued on March 9 were pegged as "important". The bulletins released in the framework of Microsoft's monthly security update cycle are listed below. Severity ratings and affected software are indicated in brackets.

> MS10-016 (Important) (Windows, Office) - Vulnerability in Windows Movie Maker could allow remote code execution
> MS10-017 (Important) (Office) - Vulnerabilities in Microsoft Office Excel could allow remote code execution

As each month, the software giant has released an updated version of the Microsoft Windows Malicious Software Removal Tool.

Separately, the company published Security Advisory 981374 addressing a publicly disclosed vulnerability in Internet Explorer (IE) 6 and 7. IE 8 is not affected by this issue. Microsoft urged users of IE 6 or 7 to upgrade to IE 8 immediately. The company said they were aware of targeted attacks seeking to exploit this vulnerability against IE 6. The security advisory recommends workarounds for the issue.

Source: Microsoft.