<p>Today's monthly advance notification of Microsoft's upcoming security bulletin release on Tuesday includes a number of critical Office patches that have experts worried.</p><p>Of particular concern are remote code execution vulnerabilities in Outlook 2007 and 2010 that can be exploited by merely previewing an email; the Office bugs make up just one of four critical bulletins, 14 in all that Microsoft is expected to release.</p><p>"It looks like a heavy month for file rendering vulnerabilities. Network administrators will likely see an uptick in phishing attacks using crafted Office documents as attackers quickly reverse Microsoft's patches to create 0.5 day exploits," said Craig Young, security researcher at Tripwire.</p><p>True, hackers don't need a lot of time to reverse engineer patches and develop exploits for published flaws. Given Outlook's criticality to so many businesses, it's a popular attack vector for targeted attacks. Spear phishing has been the kickoff to any number of targeted persistent attacks against organizations and individuals by criminal gangs and nation-states.</p><p><a href="http://threatpost.com/critical-office-sharepoint-patches-await-september-patch-tuesday-release-2/102205">Keep reading...</a></p><p>Read also:</p><p><a href="http://www.networkworld.com/news/2013/090513-microsoft-patch-tuesday-273541.html">Microsoft Patch Tuesday aims at IE (again) and SharePoint</a> (Network World)</p><p><a href="http://grahamcluley.com/2013/09/critical-security-patches/">Brace yourself. Critical security patches from Microsoft are around the corner</a> (Graham Cluley Security News)</p><p><a href="http://www.infosecurity-magazine.com/view/34376/patch-tuesday-preview-september-2013/">Patch Tuesday Preview: September 2013</a> (Infosecurity Magazine)</p><p>Explore: <a href="http://news.google.com/news/more?ncl=dWUxKKJIAcWLwhM2IyP5Rta8yi_mM&ned=us">17 additional articles.</a></p>