MS10-063: Vulnerability in Unicode Scripts Processor could lead to remote code execution

<html><body><p>Resolves a vulnerability in the Unicode Scripts Processor that could allow remote code execution if a user viewed a specially crafted document or web page with an application that supports embedded OpenType fonts.</p><h2></h2><div><span>Support for Windows Vista Service Pack 1 (SP1) ends on July 12, 2011. To continue receiving security updates for Windows, make sure you’re running Windows Vista with Service Pack 2 (SP2). For more information, refer to this Microsoft web page: <a href=“http://windows.microsoft.com/en-us/windows/help/end-support-windows-xp-sp2-windows-vista-without-service-packs” target=“_self”>Support is ending for some versions of Windows</a></span>.</div><h2>INTRODUCTION</h2><div>Microsoft has released security bulletin MS10-063. To view the complete security bulletin, visit one of the following Microsoft websites: <ul><li>Home users:<br /><div><a href=“http://www.microsoft.com/security/updates/bulletins/201009.aspx” target=“_self”>http://www.microsoft.com/security/updates/bulletins/201009.aspx</a></div><span>Skip the details</span>: Download the updates for your home computer or laptop from the Microsoft Update website now:<br /><div><a href=“http://update.microsoft.com/microsoftupdate/” target=“_self”>http://update.microsoft.com/microsoftupdate/</a></div></li><li>IT professionals:<br /><div><a href=“http://www.microsoft.com/technet/security/bulletin/ms10-063.mspx” target=“_self”>http://www.microsoft.com/technet/security/bulletin/MS10-063.mspx</a></div></li></ul><span><h3>How to obtain help and support for this security update</h3> <br />Help installing updates: <br /><a href=“https://support.microsoft.com/ph/6527” target=“_self”>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals: <br /><a href=“http://technet.microsoft.com/security/bb980617.aspx” target=“_self”>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your computer that is running Windows from viruses and malware:<br /><a href=“https://support.microsoft.com/contactus/cu_sc_virsec_master” target=“_self”>Virus Solution and Security Center</a><br /><br />Local support according to your country: <br /><a href=“https://support.microsoft.com/common/international.aspx” target=“_self”>International Support</a><br /><br /></span></div><h2>More Information</h2><div><h3>Known issues and additional information about this security update</h3>Users of affected versions of Microsoft Office and Microsoft Windows will be offered the Windows security update and the Office security update. Customers should deploy both updates to address the vulnerability.<br /><br /> <br /> <br /><br /> The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link.<br /><br /> <br /><ul><li><div><a href=“https://support.microsoft.com/en-us/help/2288608”>2288608 </a> MS10-063: Description of the security update for Office XP: September 14, 2010</div></li><li><div><a href=“https://support.microsoft.com/en-us/help/2288613”>2288613 </a> MS10-063: Description of the security update for Office 2003: September 14, 2010</div></li><li><div><a href=“https://support.microsoft.com/en-us/help/2288621”>2288621 </a> MS10-063: Description of the security update for 2007 Office Suite: September 14, 2010</div></li><li><div><a href=“https://support.microsoft.com/en-us/help/981322”>981322 </a> MS10-063: Description of the security update for Windows Unicode Scripts Processor: September 14, 2010</div></li></ul></div></body></html>