Microsoft plans to roll out four "critical" security updates that stamp out remote execution vulnerabilities in Windows, Internet Explorer, Office, Outlook Express and Windows Mail.

Two of the critical holes reside in Vista, and one in IE 7, programs that were created using Microsoft's vaunted Trustworthy Computing Security Development Lifecycle, a process that's designed to make them more resilient to attack. Vista will also get one patch rated "important."

In all, Microsoft disclosed seven security patches that will become available next Tuesday. The company has slated the second Tuesday of each month as release date for updates and announces select details on the Thursday prior so IT administrators have time to prepare.

As usual, Microsoft will also update the Windows Malicious Software Removal Tool. The company also plans to issue three high-priority, non-security updates on Microsoft Update and one on Windows Update.

Microsoft's Patch Tuesday advance notification is here. ®

11 comments posted — Comment period finished