Both bulletins have limited applicability, says Wolfgang Kandek, chief technology officer at security firm Qualys.
The first bulletin is rated critical for Windows, but is applicable only to Windows 2003 and 2008.
The second bulletin is for Microsoft Office and is rated important and applies to Office XP, 2003, 2007 and 2004 for Mac.
"As it happened before on several occasions, users of the new versions of Office for both Windows and Mac OS X are not affected by the vulnerabilities," said Kandek.
However, he says, as both bulletins are for remote code execution vulnerabilities IT administrators should track them closely and address them quickly.
This story was first published by Computer Weekly