The critical flaws include a fix for remote code execution flaws in a media decompression component in all currently supported versions of Windows. Additionally, all client versions of Windows will receive a critical update for flaws in Internet Explorer. A third critical bulletin introduces a set of killbits to prevent attacks on ActiveX components.
Each of the remaining seven bulletins address security flaws rated by the company as 'important.'Among those bulletins are fixes for remote code execution vulnerabilities in Office as well as fixes for elevation of privilege flaws in Windows and a vulnerability which could allow an attacker to tamper with XML data in the .NET service.
Adobe Systems separately said that it would issue an update to its Flash Player to address a vulnerability in the current version that hackers were exploiting to secretly gain remote access to computers. The fix has been incorporated into the latest update for the company's Flash software.