Patch Tuesday is bringing seven security fixes, with Microsoft deeming four of them "drop-everything-and-fix-this-now" critical.
The patches are for Windows, Internet Explorer and Office, as well as a sprinkling for Windows Server and Silverlight.
Microsoft says that four of the patches will address "critical" vulnerabilities.
"Critical" is, of course, Microsoft's highest severity rating.
It covers self-propagating malware such as network worms or common-use scenarios in which code is executed without warning or prompt, such as when users open booby-trapped email or suffer drive-by attacks from maliciously rigged webpages.
In this patch go-round, Microsoft warns that critical flaws might allow for remote code execution on Windows, IE, Silverlight and Office.
Another critical vulnerability would allow for elevation of privilege on Office and Server Software.
Flaws rated "important" could lead to elevation of user privileges or the disclosure of user data or personal information.
On Microsoft's vulnerability executive summary page, the company says that two of the patches address publicly disclosed holes - in Windows and Exchange Server.
One of those two security updates, bulletin MS13-011, addresses a Windows vulnerability that would allow remote code execution via a boobytrapped media file, such as an .mpg; an Office document, such as a .ppt file containing a rigged and embedded media file; or maliciously crafted streaming content
Read more:
http://nakedsecurity.sophos.com/2013/03/11/patch-tuesday-microsoft-critical/
