Security → Re: Microsoft out-of-band security bulletin for January 2013

Thanks Nick.

Internet Explorer 9 and 10 are not vulnerable to this exploit.

"If you applied the Fix it released in Security Advisory 2794220, you won’t need to uninstall it before applying the security update": »blogs.technet.com/b/msrc ··· ted=true

"However, the Fix it is no longer needed after the security update is installed, so we are recommending that you uninstall it after you have applied the update to your system"..»blogs.technet.com/b/msrc ··· ted=true

It won't hurt to leave it be, if so inclined.

Curious as to how one does this? I looked under add/remove programs (and updates) and didn't see the FixIt. The FixIt itself seems to have been removed from Microsoft's site.

This is curious. Will have to ask around to see if others are seeing the same as you.
Perhaps the FixIt does not appear when enabled under Add | Remove Programs. More as I know more.

said by chachazz:

---

"However, the Fix it is no longer needed after the security update is installed, so we are recommending that you uninstall it after you have applied the update to your system"..»blogs.technet.com/b/msrc ··· ted=true

It won't hurt to leave it be, if so inclined.

---

Thanks chachazz , it will indeed not hurt to leave the Fix-it, because MS explained in FAQ Microsoft Security Bulletin MS13-008 - Critical - Security Update for Internet Explorer (2799329):

quote:

---

If I applied the automated Microsoft Fix it solution for Internet Explorer in Microsoft Security Advisory 2794220, do I need to undo the workaround before applying this update?

Customers who implemented the Microsoft Fix it solution, "MSHTML Shim Workaround," in Microsoft Security Advisory 2794220, do not need to undo the Microsoft Fix it solution.

---

»technet.microsoft.com/en ··· ms13-008

if you look at the MS webpage for the IE-update, then go to "security update deployment", then "file information", the webpage that that takes you to has the "fixit's", along with the "file information" for the update..

microsoft always has one file for installing a "fixit" and one file for uninstalling the "fixit".. i don't think you would see an uninstall for a "fixit" in windows "add/remove"..

incidentally, i thought it was odd that the "file information" for the IE-update was tacked onto the webpages for the "fixit's"..

here is a link for the webpage for the IE-update:

»technet.microsoft.com/en ··· ms13-008

here is the webpage with the "fixit's" and the file-information for the IE-update:

»support.microsoft.com/kb/2799329

Thanks. Got the "Disable" FixIt (MicrosoftFixit50972.msi).

You're welcome

The rest of the FAQ in »technet.microsoft.com/en ··· ms13-008 includes:

However, since the workaround is no longer needed, customers may wish to undo the workaround after installing this update. See the vulnerability workarounds in this bulletin for more information on how to undo this workaround.

Great, thanks for clarifying, Smokey Bear .

That's what users really need to know.

said by chachazz :

---

Great, thanks for clarifying, Smokey Bear .

That's what users really need to know.

---

I have to thank YOU for posting the correct info concerning the fix-it, I (better say MS) only confirmed

Per the Webcast Information About the January Out of Band Security Bulletin Release

quote:

---

Remove MS FixIt 50971 post patching. It will slow down the launching of IE/browsing.

---

Noteworthy comments here: »Re: Microsoft Security Bulletin Advance Notification for 14th!

Thank you for alerting us to the out-of-bands security update.

I was finding the directions regarding the removal of the fixit prior to the security update curious. I recall the fixit advisory said to remove the fixit prior to patching since it will slow down IE. That's what I did. Whenever I apply a fixit I always download the removal fixit to have in safe keeping.

Two computers required no reboot, one did.

Sincerely, Libra

You're most welcome, Libra Happy to have been able to contribute in a positive way to this thread.