Microsoft Updates

Overview of the November 2008 Microsoft patches and their status.

MS08-068 The NTLM protocol allows an attacking server to reflect credentials and use them against the client gaining the rights of the logged on user.

MS08-069 Multiple vulnerabilities allow memory corruption (code execution with the rights of the logged on user), cross domain scripting and cross domain information leaks.

Both the updates are critical and important.