Microsoft released its October cumulative security update for Internet Explorer on Tuesday, bumping the version to 9.0.3.
The security update resolves eight vulnerabilities in Internet Explorer, reported to Microsoft privately. Microsoft warned on Tuesday that the most severe flaw could allow malicious users to remotely execute code if an Internet Explorer user visited a specially crafted web site. “An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the local user,” warned Microsoft Internet Explorer program manager Tyson Storey, in a blog post on Wednesday.
The cumulative security update will protect end users against upcoming vulnerabilities that are expected to be widely used to exploit the new hole. Microsoft warned that users are “likely to see reliable exploits developed in the next 30 days,” that could take advantage of the critical vulnerability.