McAfee provides coverage for the 20 security vulnerabilities disclosed by Microsoft. These vulnerabilities have been reviewed by McAfee Avert Labs and, based on their findings, McAfee recommends that users confirm the Microsoft product versioning outlined in the bulletins and update as recommended by Microsoft and McAfee.

This includes deploying solutions to ensure protection against the vulnerabilities outlined in this advisory.
"Today Microsoft patched six vulnerabilities that were previously used in recent targeted zero-day attacks," says Dave Marcus, security research and communications manager at McAfee Avert Labs. "This continues the trend of malware authors targeting widely deployed Microsoft business applications
and services. Malware authors continue to find unknown or unpatched vulnerabilities in popular applications and services which are then used in zero-day attacks, putting both business and consumer data at risk."
 
Microsoft vulnerability overview:
* MS07-005 – Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution
* MS07-006 – Vulnerability in Windows Shell Could Allow Elevation of Privilege
* MS07-007 – Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege
* MS07-008 – Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution
* MS07-009 – Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution
* MS07-010 – Vulnerability in Microsoft Malware Protection Engine Could Allow Remote Code Execution
* MS07-011 – Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution
* MS07-012 – Vulnerability in Microsoft MFC Could Allow Remote Code Execution
* MS07-013 – Vulnerability in Microsoft Rich Edit Could Allow Remote Code Execution
* MS07-014 – Vulnerabilities in Microsoft Word Could Allow Remote Code Execution
* MS07-015 – Vulnerabilities in Microsoft Office Could Allow Remote Code Execution
* MS07-016 – Cumulative Security Update for Internet Explorer
 
These 12 security bulletins cover a total of 20 vulnerabilities. Among the vulnerabilities, 13 are rated critical by Microsoft due to their potential for remote code execution.
McAfee Avert Labs worked with Microsoft to responsibly disclose and patch the MS07-015 (CVE 2007 – 0671) vulnerability in Excel.