While you were stuffing your face with hotdogs and potato salad and then watching fireworks go BOOM, Microsoft was preparing a Patch Tuesday bulletin that will make just as big of a BOOM. You might think that seven bulletins is no big deal, and normally you would be right, there have been months with many many more bulletins than seven but what if six of those bulletins are listed as critical? BOOM! That makes 22 critical bulletins so far this year; remember there were only 34 in all of last year.
That’s right; six critical remote code execution bugs will be patched next week when Microsoft issues the patches for the month of July. BOOM! Five of the six occur in Windows itself, one impacts Silverlight, one also impacts Internet Explorer 6 thru 10 and another one for Microsoft office. The Silverlight patch will probably be for CVE-2013-3660, discovered by Google back in May, which is a publicly known issue in the Kernel-Mode Drivers component of Windows.
What about the seventh bulletin? It is not rated critical, it is only listed as Important, but it is an Information Disclosure issue in…Windows Defender. Security Software with its own security issues, while not unheard, is amazingly ironic. BOOM!