In its July 14 scheduled software updates, Microsoft intends releasing three patches to fix some flaws affecting the older version of Windows - two of these flaws include the "browse-and-get-owned" vulnerability in both Video ActiveX Control as well as DirectShow software.

In addition, an update to fix another critical Windows security vulnerability will also be released. Microsoft has not revealed anything about that patch, except that it affects all versions of Windows.

Thus, the 'three-patch batch', likely to be released on Tuesday, would include updates that would help fix three vulnerabilities rated "important" in Microsoft's Publisher app; Internet Security and Acceleration Server; and Virtual PC and Virtual Server.

While the Security Advisory 972890 - pertaining to vulnerability in the Video ActiveX Control - would cap a hole in an Internet Explorer constituent that is related to handling online video, and contributes to attempts of hacking of websites; the DirectShow software patch relates to a vulnerability that is exploited with the help of booby-trapped QuickTime files, in "limited active attacks."

In an advanced summary of its forthcoming July 14 security patches, Microsoft has said that the updates may or may not necessitate the computers to be rebooted, depending on whether certain DLL files are in use when the patch is applied. The company also said that it is also working on plans to release six security bulletins.