Microsoft on Tuesday released as many as 9 security updates to plug at least 19 security holes in its various Windows and other software products.

Out of the 9 releases, 8 fixed some part of Windows, while the 9th fixed vulnerabilities in several programs, including Office, Visual Studio, Internet Security and Acceleration Server, ActiveX controls.

Users were cautioned last month about attacks on the ActiveX control, which exhibits Excel spreadsheets in Internet Explorer, but the company could not fix it at that time.

Patches are available for Windows 2000, Vista, XP, Windows Server 2003 and Windows Server 2008. According to Microsoft none of the vulnerabilities affect Windows 7, company’s latest operating system.

The company also fixed Remote Desktop Connection Client for Mac that is used to connect to machines based on Windows.

About 5 of the vulnerabilities are ActiveX flaws associated with “template” or code library that Microsoft makes available to other software makers also. Last month, the company released an update to fix this flawed template, which is called “Active Template Library” or ATL. Attackers are still taking advantage of at least one of those flaws.

Andrew Storms, who oversees security operations at nCircle Network Security, said, "Although we only got five. But I expect that we'll see more and more ATL bugs from Microsoft in the next couple of months."

Windows users can download the updates via Automatic updates or from Windows updates.