July 10, 2007
Microsoft released the July Security Update on July 10, 2007. Six bulletins were released that address 11 individual vulnerabilities. Microsoft rated three bulletins as Critical. These bulletins address vulnerabilities in Windows Active Directory, Excel, and the .NET framework. One of the vulnerabilities in Active Directory may allow a remote attacker to execute arbitrary code. Microsoft also released an Important bulletin to correct a vulnerability in Publisher that could also allow for code execution. Attackers must rely on user interaction to exploit the arbitrary code execution vulnerabilities in Excel, .NET, or Publisher. This factor reduces the potential for exploitation. Lower impact vulnerabilities, which are rated Moderate and Important, exist in Active Directory, Internet Information Services, Windows Vista Firewall, and ASP.NET.