Next Tuesday Microsoft [will release][2] its latest monthly batch of security bulletins. This month will see no less than seven bulletins, one of which will include a fix for a zero-day flaw in Windows that is already being used in the wild.

Other bulletins will address flaws in Windows, Office, Exchange and BizTalk, all four of which contain at least one patch rated as critical, meaning that an attacker can execute remote code to hijack a user's system.

The zero-day flaw that will reportedly be patched stems from a vulnerability in the Windows DNS system which affects Windows 2000 Server and Windows Server 2003. 

Other than listing which updates require a restart, Microsoft has not released any further information on specific vulnerabilities the updates will address.

Users should detect the updates sometime on Tuesday using Microsoft's Baseline Security Analyzer.


[2]: http://www.microsoft.com/technet/security/bulletin/advance.mspx "Microsoft Security Bulletin Advance Notification"