The Microsoft Security Response Center investigates all reports of security vulnerabilities sent to us that affect Microsoft products. If you believe you have found a security vulnerability affecting a Microsoft product, we would like to work with you to investigate it.
We are concerned that you might not know the best way to report security vulnerabilities to Microsoft. You can contact the Microsoft Security Response Center to report a vulnerability by e-mailing firstname.lastname@example.org directly, or you can submit your report via our Web-based vulnerability reporting form.
Be as specific as possible in the report, including an exact description of the vulnerability, what products it affects, steps to reproduce the problem and what the result of a successful exploit may be.
Other information you'll need to report in the form includes:
For help reporting e-mail or IM flaws, use the following resources:
More information from SearchWindowsSecurity.com