This month we released five critical bulletins to address vulnerabilities in Windows and protect customers from two types of threats:
1. Browser based attacks where websites hosting malicious code attempt to compromise visitors. This includes MS09-045, MS09-046 and MS09-047.
2. Network based scenarios where attackers attempt Remote Code Execution (RCE) or Denial-of-Service (DoS) type attacks. This includes MS09-048 and MS09-049.
For this set of bulletins, we consider the first category to be the biggest threat to customers overall as reflected in our Severity and Exploitability Index slide where we present a high level, aggregate view of each bulletin…
To read more see http://blogs.technet.com/msrc/archive/2009/09/08/september-2009-security-bulletin-release.aspx
J.C. Hornbeck | Manageability Knowledge Engineer