The critical updates affect Windows Internet Explorer 7, Windows XP Professional Edition, Windows Vista, Microsoft Exchange 2000 Server, Exchange Server 2003 and Exchange Server 2007, according to the alert.
Two other updates rated important affect SQL Server 2000, SQL Server 2005 and Office. The vulnerabilities could allow for an attacker to remotely execute code on an unpatched system.
Microsoft will release the security updates on Patch Tuesday, the second Tuesday of the month. The company provides advance notification for customers to alert them as to the software affected but keeps the details vague to prevent exploits from being developed.