The three critical updates fix holes in Internet Explorer, DirectX and Bluetooth. All three of the critical vulnerabilities could potentially enable a remote attacker to execute malicious code that could take complete control of a user’s computer or shut down the system entirely – there’s no mention on whether the IE update includes a fix for a widely publicized flaw that can be exploited in conjunction with Apple’s Safari browser.
The trio of important updates includes flaws discovered within the Windows Internet Name Service, Active Directory and PGM. The first flaw could result in elevation of privilege, while the other two enable hackers to launch denial of service attacks. A seventh update, rated moderate, is listed as a “Kill Bit” update for Windows and is reportedly aimed at a third-party application. The seven security updates should go live on Tuesday and, as usual, you’ll be able to receive and install them via Windows Update.