For this month’s round of patches Microsoft has released five new security bulletins, two of which are for critical vulnerabilities. The first critical update is a cumulative security update which resolves numerous vulnerabilities that could allow remote code execution in both workstation and server operating systems. The second update is an update specifically for Microsoft DirectShow which could also allow remote code execution in both workstation and server operating systems.
In addition to the security bulletins, Microsoft also released an updated version of the Microsoft Windows Malicious Software Removal Tool, and re-released a security advisory update for vulnerabilities in Adobe Flash Player running in Internet Explorer.
Microsoft recommends that customers apply these updates immediately using update management software, or by checking for updates using the Microsoft Update service.