Microsoft released security updates that address several vulnerabilities in a variety of products.
The Internet Explorer (IE) bulletin (MS15-106) is considered critical for IE 7 through IE 11 on vulnerable Windows clients, and is rated moderate for aforementioned versions of the browser on affected Windows servers. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Other vulnerabilities reported are in Excel. An attacker would trick a user into opening an Excel sheet with an exploit for one of the vulnerabilities in order to be successful, which is not that hard if the excel sheets is presented in an interesting context, say as relevant product information, pricing and discounts of competing vendors.
The information provided herein is on "as is" basis, without warranty of any kind.
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street