Microsoft has issued 6 security updates on Patch, that includes critical one that will can fix two outstnding holes in DirectXthat have been targeted in attacks.

DirectX has vulnerability that could allow someone to take complete control of a computer using a maliciously crafted QuickTime file.

The ActiveX control vulnerability was likely independently rediscovered by malicious hackers or leaked through the Microsoft Active Protection Program which the company uses to share early security information with third-party vendors, according to a statement from security firm Rapid7.

An attacker who gain access can run code remotely, while one of the non-critical holes involving Virtual PC and Virtual Server which allows remote code execution. And the other non-critical holes could allow elevation of privilege.

Read More: Microsoft