[BigFix-Announcements-Japan] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Patches for Windows (Japanese)'
autonotify at us.ibm.com
autonotify at us.ibm.com
Sat Aug 31 02:31:21 PDT 2013
Fixlet Site - 'Patches for Windows (Japanese)'
Current Version: 524 Published: Fri, 30 Aug 2013 11:57:56 GMT
New Fixlets:
============
***************************************************************
Title: MS13-057: Vulnerability in Windows Media Format Runtime Could Allow Remote Code Execution - Windows Media Format Runtime 9.5 x64 - Windows XP SP2 / Windows Server 2003 SP2 (x64) (V3.0) - CORRUPT PATCH (Japanese)
Severity: Critical
Fixlet ID: 1305716
Fixlet Link: http://technet.microsoft.com/JA-JP/security/bulletin/MS13-057
***************************************************************
Title: MS13-057: Vulnerability in Windows Media Format Runtime Could Allow Remote Code Execution - Windows Media Format Runtime 11 - Windows XP SP2 / Windows Server 2003 SP2 (x64) (V3.0) - CORRUPT PATCH (Japanese)
Severity: Critical
Fixlet ID: 1305718
Fixlet Link: http://technet.microsoft.com/JA-JP/security/bulletin/MS13-057
***************************************************************
Title: MS13-061: Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution - Exchange Server 2007 SP3 (KB2873746) (x64) (Japanese)
Severity: Critical
Fixlet ID: 1306111
Fixlet Link: http://technet.microsoft.com/JA-JP/security/bulletin/MS13-061
Fixlet Description: Microsoft has released a security update that resolves three publicly disclosed vulnerabilities in Microsoft Exchange Server. The vulnerabilities exist in the WebReady Document Viewing and Data Loss Prevention features of Microsoft Exchange Server. The vulnerabilities could allow remote code execution in the security context of the transcoding service on the Exchange server if a user previews a specially crafted file using Outlook Web App (OWA). The transcoding service in Exchange that is used for WebReady Document Viewing uses the credentials of the LocalService account. The Data Loss Prevention feature hosts code that could allow remote code execution in the security context of the Filtering Management service if a specially crafted message is received by the Exchange server. The Filtering Management service in Exchange uses the credentials of the LocalService account. The LocalService account has minimum privileges on the local system and presents anonymous credentials on the network After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
More information about the BigFix-Announcements-Japan
mailing list