Kernel pools are memory blocks devoted to the operating system's kernel, said Storms.

Mandt also suggested that Microsoft would eventually close those holes. "Most of the identified attack vectors can be addressed by adding simple checks or adopting exploit prevention features from the userland heap," said Mandt in his paper. "Thus, in future Windows releases and service packs, we are likely to see additional hardening of the kernel pool."

Mandt did not reply to Computerworld's emailed questions.

Other fixes in next week's mammoth update will focus on Excel and PowerPoint file formats, Internet Explorer, the online version of PowerPoint, and GDI+, or Graphics Device Interface -- Windows's graphics rendering component, said Storms.

It's possible that Microsoft will patch the IE8 vulnerabilities exploited by an Irish researcher last month at the annual Pwn2Own hacking contest. There, Stephen Fewer of Harmony Security chained three exploits to , receiving $15,000 and a Sony laptop from contest sponsor HP TippingPoint for his work.