Microsoft releases its Security Bulletins for December 2005
Microsoft Windows Security Bulletin for December reports the release of one security patch rated "critical" and one rated "important". Details of the vulnerabilities this patch pertains to are published in Microsoft's technical summary of the December Security Bulletin.
This month's bulletin reports the release of a critical patch for a vulnerability in Internet Explorer on all versions of Windows. This vulnerability could allow an attacker to gain complete control of an affected system, including the ability to exercise malicious code. The bulletin also reports an important patch against a vulnerability in the Windows Kernel. However, an attacker must be able to log on locally to exploit this vulnerability.
Users are advised to patch their systems against these vulnerabilities immediately. Patches can be downloaded via links posted within the appropriate Security Bulletins or by visiting Microsoft Update.
We recommend that users patch their systems by downloading and installing critical Microsoft updates as soon as possible.
Users are also encouraged to update their antivirus software daily and to install a firewall on their computers, if they have not done so already. For more information on firewalls, please read Microsoft's tutorial on how to protect your PC.