Microsoft's Patch Tuesday Leaves Out Crucial Internet Explorer Fix
CREDIT: Bandaid image via Levent Konuk | Shutterstock
Next week will kick off Microsoft's 2013 Patch Tuesday series with seven security bulletins to fix 12 flaws for Windows 8 and Windows RT.
The updates take care of flaws in all versions of Windows and Microsoft Office, .NET, Server Software and Developer Tools, Kaspersky's Threatpost blog reported.
What's most notable about next week's patch, however, is what it won't include: a permanent fix for the most recent zero-day, or previously unknown, exploit found for Internet Explorer versions 6 through 8.
The flaw, which resulted in "watering hole" attacks using the websites of the Council on Foreign Relations, a New York think tank, and an American wind-turbine maker, can be patched with a FixIt that became available on New Year's Eve.
Security experts are not sure whether an "out-of-band" IE patch is on its way, as the attacks have been targeted and on a small scale thus far.
In conjunction with the Microsoft update, Adobe will also push out updates to ColdFusion, Reader and Acrobat users next week.