Microsoft has issued a security advisory warning of a remote code execution vulnerability that is being exploited in "limited, targeted attacks directed at Microsoft Word 2010." The vulnerability affects all supported version of Word.
The Full Disclosure mailing list has long been the perfect place for security researchers to disclose and discuss newly found vulnerabilities.
Last week Microsoft has announced that today's Patch Tuesday will include a fix for the critical IE zero-day vulnerability that was found exploited in watering hole attacks earlier this year - and none too soon, as a number of bad actors have been using the same exploit code in other similar attack since then.
Just as researchers made public their successful attempt of creating attack code for bypassing the protections of the latest version of Microsoft's Enhanced Mitigation Experience Toolkit (v4.1), the Redmond giant has announced the preview release of EMET 5.0.
Adobe released their second out-of-band update for Adobe Flash this month.