Information about security vulnerabilities that Microsoft provides to governments and other major stakeholders is not the kind of information intelligence services such as NSA’s PRISM would use to perform their surveillance tasks according to Microsoft.
Known examples of programs run by Microsoft are the Security Cooperation Program (SCP) for Governments and Microsoft Active Protections Program (MAPP). The SCP Membership provides key technical information on security vulnerabilities prior to the security update being publically available while, the MAPP supplies Microsoft vulnerability information to security software partners prior to Microsoft’s monthly security update release so partners can build enhanced customer protections.
Read more here – http://www.h-online.com/security/news/item/Microsoft-denies-providing-US-government-with-vulnerabilities-1890696.html