Microsoft releases fixes for critical vulnerabilities in Internet Explorer, Microsoft Office, SharePoint, and the Windows operating system. But it has yet to patch a zero-day vulnerability that was first spotted in late November. The fixes came as part of Microsoft’s regular patch-release cycle, which this month addressed 24 different vulnerabilities. Security experts recommend starting with the fix for a fix for Microsoft Graphics component memory corruption vulnerability (CVE-2013-3906), which was first discovered in early November via in-the-wild attacks.”]
Source: https://www.darkreading.com/application-security/microsoft-patches-windows-office-ie-sharepoint