According to http://technet.microsoft.com/en-us/security/advisory/2719615 there is a msxml vulnerability that is currently not patched via Updates. Is this likely to be patched soon or should we be trying to include the fixit files in our image as well as doing a roll-out to existing PC's?

Hi, Microsoft has provided the solution for this vulnerability. For Workaround section, you can using Microsoft Fix it. More information refers below link: http://support.microsoft.com/kb/2719615 Also Microsoft has updated Security Essentials to the latest to avoid this attack. So, you can no worries about this vulnerability. You should trust Microsoft can do best to protect your computer.

Spencer Thanks for the update. I was aware of the FixIt workaround but wondered whether there would be a proper Update, which is much easier to roll out using WSUS/SCCM. I am happy that this is covered by Security Essentials (and presumably Forefront), more importantly so is our security manager.

Hi, Eric, according to my research for kb2719615, Microsoft seems not provide a proper update via WSUS. More information refers below link: http://social.technet.microsoft.com/Forums/zh/winserverwsus/thread/92af870b-7ba1-41fb-bf2c-ebb3cd4e2e18

Microsoft have patched this vulnerability in July 2012 Updates