Note that the standalone versions of Excel are also affected.
MS12-076/KB2720184 - Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (Microsoft Office 2003 SP3, 2007 SP2, 2010 SP1 Microsoft Office 20 for Mac, Excel Viewer, and Office Compatibility Pack SP 2 and SP3): This important update addresses four vulnerabilities in Microsoft Office/Excel by which an attacker could remotely execute code with the same rights as the current user by convincing the user to open a maliciously crated Excel file. Also note that if you're still running the Release Preview versions of Windows 8/Server 2012, these are affected as well. Note that while the Server Core installation of Server 2008/2008 R2/2012 is affected, the impact is lower (elevation of privilege rather than remote code execution). This is an easier exploit than the previous two because users are more likely to open docs or visit web sites than to open a briefcase or use a proxy file. In this case, the exploit can be accomplished either by convincing the user to open a maliciously crafted document or by getting the user to visit a malicious website (for example, by providing a link in an email message).
MS12-075/KB2761226 - Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (All supported versions of Windows): This is another critical update that addresses three vulnerabilities that can allow an attacker to remotely execute code. However, an attacker must convince the user to use a malicious proxy auto configuration file, which injects code into the currently running application and could allow execution of remote code. NET Framework except 3.0 SP2 and 3.1 SP1. NET Framework Could Allow Remote Code Execution (All supported versions of Windows): This critical update addresses five vulnerabilities that impact every client and server Microsoft OS from XP SP3 to Windows 8/Windows RT and Server 2012, and includes the Server Core installations.
The exploits occurs only if the user browses to a maliciously crafted briefcase in Windows Explorer, as it relies on a vulnerability in the Briefcase feature. MS12-072/KB2727528 - Vulnerabilities in Windows Shell Could Allow Remote Code Execution (All supported versions of Windows except Server Core installations, Itanium-based Server 2008/2008 R2 installations, and Windows RT devices): This critical update addresses two vulnerabilities in Windows that would allow an attacker to execute code remotely with the same rights as the currently logged on user. It also does not affect IE 8 on any operating system, and it does not affect IE 10, so Windows 8, Windows RT and Server 2012 are not affected, nor is the Server Core installation of Server 2008/2008 R2. It impacts only version 9 of IE, which does not run on XP thus XP is not affected. This critical update addresses three vulnerabilities in Internet Explorer 9 that would allow an attacker to gain the user rights of the currently logged on user.