Three critical updates are in this TechNet security bulletin from Microsoft for December 2009.
- 974318 - Vulnerabilities in Internet Authentication Service Could Allow Remote Code Execution.
- 967183 - Vulnerability in Microsoft Office Project Could Allow Remote Code Execution.
- 976325 - Cumulative Security Update for Internet Explorer.
- 974392 - Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service.
- 971726 - Vulnerabilities in Active Directory Federation Services Could Allow Remote Code Execution.
- 975539 - Vulnerability in WordPad and Office Text Converters Could Allow Remote Code Execution.
Or you can go to this page to see the updates for yourself.