Microsoft published 13 bulletins that patch 19 flaws. It is 1 bulletin less than anticipated. The company patched a flaw exploited by Duqu worm. Duqu is called „son of Stuxnet“. The malware uses a hole in Windows kernel.
„The most important patch this month is the TrueType font parsing issue, which is the zero-day vulnerability exploited as part of the Duqu targeted attacks. The Duqu malware didn't actually incorporate an exploit for this issue in its code, but the vulnerability was used by malicious email attachments to load Duqu onto targeted systems“ - says Joshua Talbot from Symantec.
There are also two other critical patch. One of them is for Window Media, the second fixes flaw in ActiveX.
Initially Microsoft planned to release 14 buletins but it was found that one of them caused app-compatibility issue with a popular software.
„We're currently working with that vendor to address the issue on their platform, after which we'll issue the bulletin as appropriate“ - says Microsoft’s representative. The vulnerability is not actively exploited.

Source: SC Magazine
14.12.2011