[BigFix-Announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Patches for Windows (English)'
autonotify at us.ibm.com
autonotify at us.ibm.com
Thu Sep 12 02:01:56 PDT 2013
Fixlet Site - 'Patches for Windows (English)'
Current Version: 1835 Published: Thu, 12 Sep 2013 06:53:46 GMT
New Fixlets:
============
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - SharePoint Services 2.0 - SharePoint Portal Server 2003 SP3
Severity: Critical
Fixlet ID: 1306701
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - SharePoint Services 3.0 SP3 - SharePoint Server 2007 SP3
Severity: Critical
Fixlet ID: 1306703
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - SharePoint Services 3.0 SP3 - SharePoint Server 2007 SP3 (x64)
Severity: Critical
Fixlet ID: 1306705
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - SharePoint Foundation 2010 SP1/SP2 (wss) (x64)
Severity: Critical
Fixlet ID: 1306707
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - SharePoint Server 2010 SP1/SP2 (coreserver) (x64)
Severity: Critical
Fixlet ID: 1306709
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - SharePoint Server 2010 SP1/SP2 (wosrv) (x64)
Severity: Critical
Fixlet ID: 1306711
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - SharePoint Foundation 2013 (x64)
Severity: Important
Fixlet ID: 1306713
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - SharePoint Server 2013 (coreserverloc) (x64)
Severity: Important
Fixlet ID: 1306715
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - SharePoint Server 2013 (wacserver) (x64)
Severity: Important
Fixlet ID: 1306717
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - Excel Services - SharePoint Server 2007 SP3
Severity: Important
Fixlet ID: 1306719
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - Excel Services - SharePoint Server 2007 SP3 (x64)
Severity: Important
Fixlet ID: 1306721
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - Excel Services - SharePoint Server 2010 SP1/SP2 (x64)
Severity: Critical
Fixlet ID: 1306723
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - Business Productivity Servers - SharePoint Server 2010 SP1/SP2 (x64)
Severity: Critical
Fixlet ID: 1306725
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - Word Automation Services - SharePoint Server 2010 SP1/SP2 (x64)
Severity: Critical
Fixlet ID: 1306727
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - Excel Web App - Office Web Apps 2010 SP1/SP2 (x64)
Severity: Critical
Fixlet ID: 1306729
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-067: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution - Word Web App - Office Web Apps 2010 SP1/SP2 (x64)
Severity: Critical
Fixlet ID: 1306731
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-067
Fixlet Description: Microsoft has released a security update that resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in Microsoft Office Server software. The most severe vulnerability could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-068: Vulnerability in Microsoft Outlook Could Allow Remote Code Execution - Office 2007 SP3 - Outlook 2007 SP3
Severity: Critical
Fixlet ID: 1306801
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Outlook. The vulnerability could allow remote code execution if a user opens or previews a specially crafted email message using an affected edition of Microsoft Outlook. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS13-068: Vulnerability in Microsoft Outlook Could Allow Remote Code Execution - Outlook 2010 SP1/SP2
Severity: Critical
Fixlet ID: 1306803
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Outlook. The vulnerability could allow remote code execution if a user opens or previews a specially crafted email message using an affected edition of Microsoft Outlook. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS13-068: Vulnerability in Microsoft Outlook Could Allow Remote Code Execution - Outlook 2010 SP1/SP2 (x64)
Severity: Critical
Fixlet ID: 1306805
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-068
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Outlook. The vulnerability could allow remote code execution if a user opens or previews a specially crafted email message using an affected edition of Microsoft Outlook. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Office 2003 SP3 (mso) (KB2817474)
Severity: Important
Fixlet ID: 1307201
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Word 2003 SP3 (KB2817682)
Severity: Important
Fixlet ID: 1307203
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Office 2007 SP3 (mso) (KB2760411)
Severity: Important
Fixlet ID: 1307205
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Office 2007 SP3 (msptls) (KB2597973)
Severity: Important
Fixlet ID: 1307207
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Word 2007 SP3 (KB2767773)
Severity: Important
Fixlet ID: 1307209
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Word 2010 SP1/SP2 (KB2760769)
Severity: Important
Fixlet ID: 1307211
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Word 2010 SP1/SP2 (KB2767913)
Severity: Important
Fixlet ID: 1307213
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Word 2010 SP1/SP2 (x64) (KB2760769)
Severity: Important
Fixlet ID: 1307215
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Word 2010 SP1/SP2 (x64) (KB2767913)
Severity: Important
Fixlet ID: 1307217
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Office Compatibility Pack SP3 (KB2760823)
Severity: Important
Fixlet ID: 1307219
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-072: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Word Viewer (KB2817683)
Severity: Important
Fixlet ID: 1307221
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-072
Fixlet Description: Microsoft has released a security update that resolves 13 privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-073: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution - Office 2003 SP3 - Excel 2003 SP3
Severity: Important
Fixlet ID: 1307301
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-073
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an affected version of Microsoft Excel or other affected Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-073: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution - Office 2007 SP3 - Excel 2007 SP3
Severity: Important
Fixlet ID: 1307303
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-073
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an affected version of Microsoft Excel or other affected Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-073: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution - Office 2010 SP1/SP2 - Excel 2010 SP1/SP2
Severity: Important
Fixlet ID: 1307305
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-073
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an affected version of Microsoft Excel or other affected Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-073: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution - Office 2010 SP1/SP2 - Excel 2010 SP1/SP2 (x64)
Severity: Important
Fixlet ID: 1307307
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-073
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an affected version of Microsoft Excel or other affected Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-073: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution - Office 2013 - Excel 2013
Severity: Important
Fixlet ID: 1307309
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-073
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an affected version of Microsoft Excel or other affected Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-073: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution - Office 2013 - Excel 2013 (x64)
Severity: Important
Fixlet ID: 1307311
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-073
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an affected version of Microsoft Excel or other affected Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-073: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution - Excel Viewer 2007 SP3
Severity: Important
Fixlet ID: 1307315
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-073
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an affected version of Microsoft Excel or other affected Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-073: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution - Office Compatibility Pack SP3
Severity: Important
Fixlet ID: 1307317
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-073
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an affected version of Microsoft Excel or other affected Microsoft Office software. An attacker who successfully exploited the most severe vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS13-074: Vulnerabilities in Microsoft Access Could Allow Remote Code Execution - Access 2007 SP3
Severity: Important
Fixlet ID: 1307401
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-074
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Access file with an affected version of Microsoft Access. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS13-074: Vulnerabilities in Microsoft Access Could Allow Remote Code Execution - Access 2010 SP1/SP2
Severity: Important
Fixlet ID: 1307403
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-074
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Access file with an affected version of Microsoft Access. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS13-074: Vulnerabilities in Microsoft Access Could Allow Remote Code Execution - Access 2010 SP1/SP2 (x64)
Severity: Important
Fixlet ID: 1307405
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-074
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Access file with an affected version of Microsoft Access. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS13-074: Vulnerabilities in Microsoft Access Could Allow Remote Code Execution - Access 2013
Severity: Important
Fixlet ID: 1307407
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-074
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Access file with an affected version of Microsoft Access. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS13-074: Vulnerabilities in Microsoft Access Could Allow Remote Code Execution - Access 2013 (x64)
Severity: Important
Fixlet ID: 1307409
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-074
Fixlet Description: Microsoft has released a security update that resolves three privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Access file with an affected version of Microsoft Access. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS13-075: Vulnerability in Microsoft Office IME (Chinese) Could Allow Elevation of Privilege - Pinyin IME 2010 - Office 2010 SP1
Severity: Important
Fixlet ID: 1307501
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-075
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Office IME (Chinese). The vulnerability could allow elevation of privilege if a logged on attacker launches Internet Explorer from the toolbar in Microsoft Pinyin IME for Simplified Chinese. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights. Only implementations of Microsoft Pinyin IME 2010 are affected by this vulnerability. Other versions of Simplified Chinese IME and other implementations of IME are not affected. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS13-075: Vulnerability in Microsoft Office IME (Chinese) Could Allow Elevation of Privilege - Pinyin IME 2010 - Office 2010 SP1 (x64)
Severity: Important
Fixlet ID: 1307503
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-075
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Office IME (Chinese). The vulnerability could allow elevation of privilege if a logged on attacker launches Internet Explorer from the toolbar in Microsoft Pinyin IME for Simplified Chinese. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights. Only implementations of Microsoft Pinyin IME 2010 are affected by this vulnerability. Other versions of Simplified Chinese IME and other implementations of IME are not affected. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
***************************************************************
Title: MS13-078: Vulnerability in FrontPage Could Allow Information Disclosure - FrontPage 2003 SP3 (KB2825621)
Severity: Important
Fixlet ID: 1307801
Fixlet Link: http://technet.microsoft.com/en-us/security/bulletin/MS13-078
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft FrontPage. The vulnerability could allow information disclosure if a user opens a specially crafted FrontPage document. The vulnerability cannot be exploited automatically; for an attack to be successful a user must be convinced to open the specially crafted document. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
More information about the BigFix-Announcements
mailing list