News 

One of the flaws has been ranked critical, Microsoft's highest warning, and addresses a TCP/IP vulnerability that could allow a remote code execution, giving an attacker complete control of the system with no user intervention.

Microsoft has also addressed an elevation of privilege flaw, affecting the Local Security Authority Subsystem Service (LSASS).

Amol Sarwate, a vulnerability researcher for security firm Qualsys, notes that while the update has been "fairly light" in comparison to other Patch Tuesdays, both patches mark a trend towards flaws affecting multiple versions of Windows, where Microsoft has re-used the same code in different versions. "Some of these protocols are over 20 years old," he claims.

Microsoft also released five non-security related, high-priority updates via Microsoft Update, as well as releasing an updated version of the Microsoft Windows Malicious Software Removal Tool.