As expected, Microsoft has released its monthly update for September 2007, including a total of four security patches, one of them for a "critical" vulnerability in Windows 2000 SP4 that could allow remote code execution, and three other vulnerabilities rated as "important".
The Windows 2000 patch addresses a flaw were an attacker user could run unauthorized software on a victim's computer by tricking him into visiting a maliciously encoded Web page. The remaining "important" patches, address flaws in Visual Studio, Windows Services for UNIX, Subsystem for Unix-based applications, and MSN Messenger, Windows Live Messenger. These issues involved remote code execution and elevation of privilege.
In addition, Microsoft is also releasing an update to its Malicious Software Removal Tool, as it does every month.