Microsoft today shipped seven security updates that patched eight vulnerabilities in Windows and a code library used to protect Web applications from cross-site scripting attacks. Only one of the seven updates was labeled “critical,” Microsoft’s highest threat ranking. Of the eight vulnerabilities, Microsoft classified seven as important, one as critical. MS12-004, which plugs two holes in Windows Media Player, was the unanimous choice of security experts as the first update to deploy. Microsoft gave the bug an exploitability index rating of “1,” meaning the company expects reliable exploit code to appear in the wild in the next 30 days.”]
Source: https://www.csoonline.com/article/2130599/microsoft-patches-critical-windows-drive-by-bug.html