Another Patch Tuesday and Microsoft comes out with a variety of patches, and this series is quite serious.
The critical vulnerabilities are in: Windows, Outlook Express, Windows Mail, Internet Explorer and Office.
Cumulative security update for Internet Explorer (939653) is rated moderate for Internet Explorer 6 and 7 on Windows Server 2003. For all other supported releases of Internet Explorer, this security update is rated critical.
This Microsoft Word security update addresses the vulnerability by modifying the way that Word handles specially crafted Word files. It is a critical security update for supported editions of Microsoft Office 2000, Microsoft Office XP, and Microsoft Office 2004 for Mac.
Users are recommended to update as soon as possible.
Worth noting is also that Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.
If you want more information about these security bulletins do check out the TechNet Webcast that will present a brief overview of the technical details of the October security bulletins followed by an extensive Q&A session that will give you the opportunity to ask questions and get answers from Christopher Budd, CISA, CISM, CISSP, ISSMP Security Program Manager, PSS Security, Microsoft Corporation.