Microsoft released today two security bulletins, addressing vulnerabilities in Microsoft Windows and Microsoft Office.
Microsoft Security Bulletin MS06-011, Permissive Windows Services DACLs Could Allow Elevation of Privilege (914798), is rated Important. Affected OS are Windows XP Service Pack 1, Windows Server 2003, and Windows Server 2003 for Itanium-based systems. This vulnerability can allow an escalation of user privilege.
Microsoft Security Bulletin MS06-012, Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (905413), affects users of Office 2000 Service Pack 3, Office XP Service Pack 3, Office 2003 Service Pack 1 or 2, Works Suites, Office X and Office 2004 for Mac. This vulnerability allows remote code execution, and is rated critical.
Users of the said software are advised to update their computers.