The critical flaw is in Microsoft's Distributed Component Object Model Remote Procedure Call (RPC) interface. The vulnerability involves the RPC protocol, which deals with inter-computer communications. Microsoft warned that, under certain circumstances, the RPC might not properly check messages sent to the PC.
Would you like to know more? Thanks JSR. The referenced patch has been listed on our OS Updates page for 2 weeks or so now.