US-CERT Current Activity Microsoft Releases Two Out-of-Band Security Bulletins and a Security Advisory Original release date: July 28, 2009 at 1:18 pm Last revised: July 28, 2009 at 2:49 pm Microsoft has released two out-of-band security bulletins. The first bulletin, MS09-034, is a cumulative security update for Internet Explorer that addresses several vulnerabilities. These vulnerabilities may allow a remote attacker to execute arbitrary code. The second bulletin, MS09-035, addresses vulnerabilities in the Visual Studio Active Template Library (ATL). Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code. Additionally, Microsoft has released security advisory 973882 to provide specific guidance for developers, IT professionals, consumers, and home users regarding the vulnerabilities in Active Template Library (ATL). US-CERT encourages users and administrators to review Microsoft Security Bulletins MS09-034 and MS09-035 and Microsoft Security Advisory 973882 and apply any necessary updates or workarounds to help mitigate the risks. Relevant Url(s): <http://www.microsoft.com/technet/security/bulletin/ms09-034.mspx> <http://www.microsoft.com/technet/security/bulletin/ms09-035.mspx> <http://www.microsoft.com/technet/security/advisory/973882.mspx> Produced 2009 by US-CERT, a government organization. Note: Posted according to copyright permissions of US-CERT (United States Computer Emergency Readiness Team) Purpose of Posting -- To help others keep their genealogy computers healthy.