Microsoft has released a security bulletin for December 2014 to address vulnerabilities in Windows, Exchange, Internet Explorer and Office. Exploitation of these vulnerabilities could allow elevation of privilege, disclosure of information and remote code execution.
Users and administrators are encouraged to review the Security Bulletin and apply the necessary updates.
Click here for more information