On Tuesday, Microsoft posted their security bulletin for December. As usual all required security updates for your PC can be found on Windows Update.
Bulletin MS06-072: Cumulative Security Update for Internet Explorer (925454) [Critical]
This update resolves vulnerabilities in Internet Explorer that could allow remote code execution.
Bulletin MS06-073: Vulnerability in Visual Studio 2005 Could Allow Remote Code Execution (925674) [Critical]
This update resolves a vulnerability in Visual Studio 2005 that could allow remote code execution. {Requires Microsoft Update or alternative source.}
Bulletin MS06-078: Vulnerability in Windows Media Format Could Allow Remote Code Execution (923689) [Critical]
This update resolves a vulnerability in Windows Media Player that could allow remote code execution.
Bulletin MS06-074: Vulnerability in SNMP Could Allow Remote Code Execution (926247) [Important]
This update resolves a vulnerability in Simple Network Management Protocol (SNMP) that could allow remote code execution. The SNMP service is not installed by default in any supported version of Windows.
Bulletin MS06-075: Vulnerability in Windows Could Allow Elevation of Privilege (926255) [Important]
A vulnerability exists in Windows that could allow elevation of privilege on an affected system. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability.
Bulletin MS06-076: Cumulative Security Update for Outlook Express (923694) [Important]
This update resolves a vulnerability in Outlook Express that could allow remote code execution. User interaction is required for an attacker to exploit this vulnerability.
Bulletin MS06-077: Vulnerability in Remote Installation Service Could Allow Remote Code Execution (926121) [Important]
This update resolves a vulnerability in Remote Installation Service (RIS) that could allow remote code execution. RIS is not installed by default.