Microsoft and Adobe preview September Patch Tuesday

Patch Tuesday. When it releases its monthly patches September 13, Microsoft will publish five bulletins categorized as “important” to close 15 holes. Most of the bulletins fix vulnerabilities in Microsoft Office, which attackers can use to inject malicious code and escalate rights. Arbitrary code can also be executed in the Mac edition of Office, and rights can also be escalated in the server component SharedPoint Workspace. One bulletin closes a hole in all Windows versions starting with XP (including Server) that attackers can use to remotely inject code. It is currently unclear why Microsoft does not categorize this bulletin as “critical.” In addition, Microsoft will fix a privilege escalation problem in Windows Server from version 2003.

Finally, the Windows Malicious Software Removal Tool will receive current virus signatures. September 13 is also Adobe’s patch day. The company announced it will be closing critical holes in all currently maintained versions of Adobe Reader and Acrobat both for Windows and Mac. Adobe also announced it was working to remove compromised DigiNotar-CA certificates from its products. For the time being, Adobe published a workaround for users who do not want to wait for the official update.
Source: http://www.h-online.com/security/news/item/Microsoft-and-Adobe-preview-September-Patch-Tuesday-1340099.html