On May 8, Microsoft will release seven security updates for various products. Included in the batch are two updates for Windows, three updates for Office, one update for Exchange Server, and one update for CAPICOM and BizTalk Server. Microsoft will host a Webcast regarding the monthly patch release on May 9 at 11 a.m. Pacific Time.
While no details of the vulnerabilities are available at this time, eEye Digital Security lists several "advisories" about vulnerabilities that could be addressed as part of Microsoft's security updates this month. Included in the mix are a remote code execution problem in Windows, an arbitrary code execution problem in Publisher 2007, and a remote code execution problem in Internet Explorer.
Ruben Santamarta, operator of Reversemode.com, also indicates that he has reported multiple vulnerabilities to Microsoft regarding Windows, however no other information is made available at the site other than to say that he'll post more information when Microsoft releases patches for the problems.