Well, it's that time again. You can set your calendar by it -- Microsoft's monthly patch release. Redmond released three security updates yesterday, including one critical patch that is highly recommend to be installed. The other two updates were rated as important. What was missing from the security update was a fix for the recently announced vulnerability found in Excel, for which there have been zero day exploits.
MS09-006 addresses a vulnerability in the Windows kernel that could allow remote code execution. MS09-007 fixes a vulnerability in SChannel that could allow spoofing, and MS09-008 fixes a vulnerability in DNS and WINS server that could also allow spoofing.
Microsoft said that Windows 2000, Server 2003, XP, Server 2008 and Windows Vista were all affected by the security patches. The updates are available from Microsoft Update, Windows Update, and Microsoft Download Center.