MS10-063: Vulnerability in Unicode Scripts Processor could lead to remote code execution

Applies to: Windows Server 2008 Service Pack 2Windows Server 2008 for Itanium-Based SystemsWindows Server 2008 Datacenter More

Support for Windows Vista Service Pack 1 (SP1) ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 (SP2). For more information, refer to this Microsoft web page: Support is ending for some versions of Windows.

INTRODUCTION


Microsoft has released security bulletin MS10-063. To view the complete security bulletin, visit one of the following Microsoft websites:

How to obtain help and support for this security update


Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

More Information


Known issues and additional information about this security update

Users of affected versions of Microsoft Office and Microsoft Windows will be offered the Windows security update and the Office security update. Customers should deploy both updates to address the vulnerability.




The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link.


  • 2288608 MS10-063: Description of the security update for Office XP: September 14, 2010
  • 2288613 MS10-063: Description of the security update for Office 2003: September 14, 2010
  • 2288621 MS10-063: Description of the security update for 2007 Office Suite: September 14, 2010
  • 981322 MS10-063: Description of the security update for Windows Unicode Scripts Processor: September 14, 2010