Looks like the December 2008 monthly security bulletins are out and the new ones include:

  • MS08-070: Vulnerabilities in Visual Basic 6.0 Runtime Extended Files (ActiveX Controls) Could Allow Remote Code Execution (932349) which is rated “Critical”
  • MS08-071: Vulnerabilities in GDI Could Allow Remote Code Execution (956802) which is rated “Critical”
  • MS08-072: Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (957173) which is rated “Critical”
  • MS08-073: Cumulative Security Update for Internet Explorer (958215) which is rated “Critical”
  • MS08-074: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (959070) which is rated “Critical”
  • MS08-075: Vulnerabilities in Windows Search Could Allow Remote Code Execution (959349) which is rated “Critical”
  • MS08-076: Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807) which is rated “Important”
  • MS08-077: Vulnerability in Microsoft Office SharePoint Server Could Cause Elevation of Privilege (957175) which is rated “Important”

For more information on these as well as all the others visit the Microsoft Security Response Center Blog at http://blogs.technet.com/msrc/archive/2008/12/09/december-2008-monthly-bulletin-release.aspx.

J.C. Hornbeck | Manageability Knowledge Engineer