Microsoft Security Response Center has announced that it will be pushing out three Security Bulleting covering 11 software vulnerabilities for patch Tuesday (November 9, 2010). Microsoft is also hosting a webcast on November 10^th to address any questions you may have regarding these patches.

There is only one patch labeled “Critical” for this patch and the other two are labeled “Important”. The critical patch, allows Remote Code Execution or in other words a hacker could use it to seize control of an unpatched machine. The other two patches while not critical also offer a potential hacker the ability to either seize control of the user’s machine or enable access they shouldn’t otherwise have. There are no Operating System patches this round, however all three patches will require the patched machine to be restarted.

#	Rating	Impact	Affected software
1	Critical	Remote Code Execution	Office XP/2003/2007/2010, Office 2011 for Mac
2	Important	Remote Code Execution	PowerPoint 2002/2003
3	Important	Elevation of Privilege	Forefront Unified Access Gateway 2010

For Small Business Server or any company using Windows Server Update Services (WSUS) Microsoft is also releasing a couple of updates:

• One or more nonsecurity, high-priority updates on Windows Update (WU) and Windows Server Update Services (WSUS)
• One or more nonsecurity, high-priority updates on Microsoft Update (MU) and WSUS
• An updated version of the Microsoft Windows Malicious Software Removal Tool on WU, MU, WSUS, and the Microsoft Download Center