The two bulletins address three reported vulnerabilities. The first bulletin, rated “critical,” affects Windows 2003 and 2007. It specifically addresses a vulnerability in Windows Internet Name Services (WINS). The second bulletin, rated “important,” fixes two vulnerabilities in Microsoft PowerPoint running on Office XP 2003, 2007, and 2004 for Macs. If successfully exploited, these vulnerabilities may lead to arbitrary code execution.
Users are strongly advised to immediately download and apply these patches from Microsoft’s site. Trend Micro Deep Security and OfficeScan with Intrusion Defense Firewall (IDF) plug-in users are protected from attacks that may leverage these bugs. For more information regarding this month’s Patch Tuesday release, visit the Trend Micro security advisory page.