Windows administrators are going to be busy next week, as Microsoft plans to release a whopping 13 security patches for its products. The updates will include a fix for a widely reported vulnerability in Microsoft Word, as well as changes to the way Internet Explorer (IE) handles ActiveX that might cause headaches for some.Nine of the patches will address vulnerabilities in the Windows operating system, some of which Microsoft rates critical. There will also be one “Important” fix for Microsoft Exchange, and two patches for Microsoft Office, including software that repairs the Word bug.Last month, hackers began e-mailing the Word malware to a handful of victims—mostly within government agencies or contractors—in a series of extremely targeted attacks, said Johannes Ullrich, chief research officer at the SANS Institute.But as knowledge of the Word flaw has spread, researchers like Ullrich fear that it may be used in a more widespread attack. The vulnerability can be exploited to run unauthorized software on PCs, although users must first be tricked into opening a maliciously encoded Word document. Microsoft also plans to finalize changes to the way IE processes dynamic content using ActiveX. Microsoft is changing the way IE works in response to a 2003 patent lawsuit loss to the University of California and Eolas Technologies.The changes will force developers to reprogram parts of their websites and intranets. Otherwise, IE will force users to click on a pop-up “tool tip” dialog box before being able to interact with things like Flash or QuickTime. Microsoft has actually been rolling these changes into IE for months, but has offered users a “compatibility patch” that allowed IE to work on websites that had not been reprogrammed. With Tuesday’s updates, though, there will be no way to avoid the ActiveX changes.The biggest headache, however, will come from the sheer number of updates being released Tuesday, said Susan Bradley, chief technology officer with Tamiyasu, Smith, Horn and Braun, Accountancy.Complicating matters is the fact that these patches will be released in the middle of Microsoft’s Tech-Ed user conference. “I’ll be at Tech-Ed in Boston and deciding if I remotely patch over the weekend or not,” Bradley said via e-mail.-Robert McMillan, IDG News Service (San Francisco Bureau)This article is posted on our Microsoft Informer page. For more news on the Redmond, Wash.-based powerhouse, keep checking in.Check out our CIO News Alerts and Tech Informer pages for more updated news coverage. Related content BrandPost The future of trust—no more playing catch up Broadcom: 2023 Tech Trends That Transform IT By Eric Chien, Director of Security Response, Symantec Enterprise Division, Broadcom Mar 31, 2023 5 mins Security BrandPost TCS gives Blackhawk Network an edge with Microsoft Cloud In this case study, Blackhawk Network’s Cara Renfroe joins Tata Consultancy Services’ Rakesh Kumar and Microsoft’s Nilendu Pattanaik to explain how TCS transformed the gift card company’s customer engagement and global operati By Tata Consultancy Services Mar 31, 2023 1 min Financial Services Industry Cloud Computing IT Leadership BrandPost How TCS pioneered the ‘borderless workspace’ with Microsoft 365 Microsoft’s modern workplace solution proved a perfect fit for improving productivity and collaboration, while maintaining security of systems and data. By Tata Consultancy Services Mar 31, 2023 1 min Financial Services Industry Microsoft Cloud Computing BrandPost Supply chain decarbonization: The missing link to net zero By improving the quality of global supply chain data, enterprises can better measure their true carbon footprint and make progress toward a net-zero business ecosystem. By Tata Consultancy Services Mar 31, 2023 2 mins Retail Industry Supply Chain Green IT Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe