Microsoft releases security update to fix 5 ‘critical’ issues

Microsoft releases security update to fix 5 ‘critical’ issues

Microsoft has attempted to close five "critical" security holes in its products, including those found in its operating system, Exchange, Internet Explorer and Office.

The fixes were among 26 vulnerabilities in total which were looked at by the technology giant.

MS12-052 was the first critical update and solves an issue where remote code execution could take place in Internet Explorer if a user viewed a malicious webpage. This would then give the attacker the same user rights as the administrator.

Microsoft also revealed that it has been looking at how Windows deals with certificates that have RSA keys of less than 1,024 bits in length.

"We’ve been talking about this subject since June, and today we are announcing the availability of an update to Windows that restricts the use of certificates with RSA keys less than 1024 bits in length with Security Advisory 2661254," read a blog post, with the update being available from the Download Centre and Microsoft Update Catalog.