Security updates address 23 vulnerabilities in Microsoft Office, Internet Explorer, Windows and Microsoft Office. One of the vulnerabilities is actively exploited by attackers, but Microsoft only rated the security bulletin as important and not critical. Another security bulletin addresses a denial-of-service vulnerability in the Windows TCP/IP driver that affects all versions of Windows except for Windows XP and Windows Server 2003. The handling of digital certificates in Windows was also improved in the latest security bulletin released by Microsoft on Tuesday. Microsoft believes reliable exploits for the Internet Explorer vulnerabilities will be developed within next 30 days.”]