 dpPremium,MVM
join:2000-12-08
Greensburg, PA
kudos:7 | Microsoft Security Bulletin(s) for February 12, 2013 Note: There may be latency issues due to replication, if the page does not display keep refreshing
Today Microsoft released the following Security Bulletin(s).
Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.
Bulletin Summary:
»technet.microsoft.com/en-us/secu···ms13-feb
Critical (5)
Microsoft Security Bulletin MS13-009
Cumulative Security Update for Internet Explorer (2792100)
»technet.microsoft.com/en-us/secu···ms13-009
Microsoft Security Bulletin MS13-010
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (2797052)
»technet.microsoft.com/en-us/secu···ms13-010
Microsoft Security Bulletin MS13-011
Vulnerability in Media Decompression Could Allow Remote Code Execution (2780091)
»technet.microsoft.com/en-us/secu···ms13-011
Microsoft Security Bulletin MS13-012
Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2809279)
»technet.microsoft.com/en-us/secu···ms13-012
Microsoft Security Bulletin MS13-020
Vulnerability in OLE Automation Could Allow Remote Code Execution (2802968)
»technet.microsoft.com/en-us/secu···ms13-020
Important (7)
Microsoft Security Bulletin MS13-013
Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution (2784242)
»technet.microsoft.com/en-us/secu···ms13-013
Microsoft Security Bulletin MS13-014
Vulnerability in NFS Server Could Allow Denial of Service (2790978)
»technet.microsoft.com/en-us/secu···ms13-014
Microsoft Security Bulletin MS13-015
Vulnerability in .NET Framework Could Allow Elevation of Privilege (2800277)
»technet.microsoft.com/en-us/secu···ms13-015
Microsoft Security Bulletin MS13-016
Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)
»technet.microsoft.com/en-us/secu···ms13-016
Microsoft Security Bulletin MS13-017
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2799494)
»technet.microsoft.com/en-us/secu···ms13-017
Microsoft Security Bulletin MS13-018
Vulnerability in TCP/IP Could Allow Denial of Service (2790655)
»technet.microsoft.com/en-us/secu···ms13-018
Microsoft Security Bulletin MS13-019
Vulnerability in Windows Client/Server Run-time Subsystem (CSRSS) Could Allow Elevation of Privilege (2790113)
»technet.microsoft.com/en-us/secu···ms13-019
Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.
As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.
Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.
--
Microsoft® Consumer Security MVP, 2004 - 2013
DP's Security Bits |
|
|
|
Reviews:
 ·Zen Internet
| thanks don 
TechNet Webcast: Information About the February 2013 Security Bulletin Release
Event ID: 1032538626
Starts: Wednesday, February 13, 2013 11:00 AM
Time zone: (GMT-08:00) Pacific Time (US & Canada)
Duration: 1 hour(s)
Language(s): English.
Product(s): computer security and information security.
Audience(s): IT Decision Maker, IT Implem_IT Generalist and IT Manager.
Join us for a brief overview of the technical details of this month's Microsoft security bulletins. We intend to address your concerns in this webcast. Therefore, Microsoft security experts devote most of this webcast to answering the questions that you ask.
Presented by:
Dustin Childs, Group Manager, Response Communications, Microsoft Corporation
and
TBD
Register now for the February Security Bulletin webcast.
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security
|
|
| I just updated.
I am running Windows 8 x64 And Office 2013 x64.
The updates were 305 megabytes..glad that's over |
|
 CudniLa Merma - VigiladoPremium,MVM
join:2003-12-20
Someshire
kudos:13 | reply to dp
Thanks for update. It took a bit longer than usual to find all the applicable updates (86Mb worth). All well
Cudni |
|
 antdudeA Ninja AntPremium,VIP
join:2001-03-25
United State
kudos:4 | reply to dp
So far so good on my two 64-bit W7 SP1 (IE8; UE and EE), 64-bit Vista HPE SP2 (IE7), and two XP SP3 (Pro. and Home) machines. |
|
art22ggPremium
join:2005-02-16
Courtenay, BC
kudos:5 | reply to dp
Thanks dp...  |
|
 siljalineI'm lovin' that double widePremium
join:2002-10-12
Montreal, QC
kudos:17
·Bell Sympatico
| reply to dp
Was less painful than was anticipated:
Microsoft Security Bulletin MS13-009 - Critical
• Cumulative Security Update for Internet Explorer (2792100)
»technet.microsoft.com/en-us/secu···ms13-009
Microsoft Security Bulletin MS13-010 - Critical
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (2797052)
• »technet.microsoft.com/en-us/secu···ms13-010
MS13-015: Description of the security update for the .NET Framework 3.5.1 on Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: February 12, 2013
• »support.microsoft.com/kb/2789645
MS13-015: Description of the security update for the .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2: February 12, 2013
• »support.microsoft.com/kb/2789642
Microsoft Security Bulletin MS13-016 - Important
Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)
• »technet.microsoft.com/en-us/secu···ms13-016
Microsoft Security Bulletin MS13-019 - Important
Vulnerability in Windows Client/Server Run-time Subsystem (CSRSS) Could Allow Elevation of Privilege (2790113)
• »technet.microsoft.com/en-us/secu···ms13-019
Microsoft Security Bulletin MS13-018 - Important
Vulnerability in TCP/IP Could Allow Denial of Service (2790655)
• »technet.microsoft.com/en-us/secu···ms13-018
Microsoft Security Bulletin MS13-017 - Important
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2799494)
• »technet.microsoft.com/en-us/secu···ms13-017
And MRT |
|
| reply to dp
Thank you, dp  . |
|
 lilhurricaneSo mote it bePremium,Mod
join:2003-01-11
Purple Zone
kudos:54 | reply to dp
No issues here..done without ado - thanks Dp
..and appreciate the added info as well, Nick |
|
 MarkAWBarry WhitePremium
join:2001-08-27
Canada
kudos:16 | reply to dp
Thanks dp and NICK ADSL UK ended up with 9 updates for my Win 7 pro. |
|
Mele20Premium
join:2001-06-05
Hilo, HI
kudos:4 | reply to dp
I've only done the IE Cumulative Update for IE 10 on Win 8 so far. It required a reboot! 
Then when I started IE, it acted like I have NEVER USED IE BEFORE! What was that all about?
Why didn't Microsoft include the Flash update? It is a pain in the butt to find it on Microsoft's support site. (I don't use WU).
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson |
|
| said by Mele20:Why didn't Microsoft include the Flash update? It is a pain in the butt to find it on Microsoft's support site. (I don't use WU).
It's pretty easy to find at
»www.microsoft.com/en-us/download···ult.aspx
Find Downloads: Select IE > Select OS [Win 8] > Sort by: Newest to Oldest
comes up as #2 and #3 on the page. |
|
Mele20Premium
join:2001-06-05
Hilo, HI
kudos:4 | I use Firefox and it will not filter there by Newest to Oldest if you select the OS as Win 8. It will filter only by relevancy and it is not in the top 20.
If I do a search for Flash Player for Windows 8 nothing is found later than early JANUARY 2013.
So, it is NOT easy to find. It is extremely difficult if you use Fx. Granted, I still am on Fx 10 ESR. Maybe the current Fx will filter by Newest to Oldest but I dread having to update Fx. I have the latest Opera and SeaMonkey and both are terrible. So, I am very hesitant to update Fx.
I suppose if I use IE 10 it would find it more easily but I hate IE. I am only updating it because it is embedded in IE. Microsoft should never have embedded it. Embedded in Chrome is horrible too (so I don't use Chrome). In Fx, I have the Flash Plugin disabled but guess what? When I updated it, the plugin became silently enabled! UGH.
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson |
|
 onDvineDon't Litter. Spay-Neuter.Premium
join:2005-01-29
So. CA, USA
kudos:9 | reply to dp
Muchas gracias, dp! |
|
LibraPremium
join:2003-08-06
USA
kudos:1 | reply to dp
Thank you dp. I just updated one Vista 32bit Sp2 and two Windows 7 64bit and all is well.
Sincerely, Libra |
|
| reply to Mele20
said by Mele20:Why didn't Microsoft include the Flash update? It is a pain in the butt to find it on Microsoft's support site. (I don't use WU).
it seems that MS always releases an "advisory" for "flash player"-updates, for IE 10, so, you could get the update for "flash player", for IE 10, by checking MS's "advisories":
»technet.microsoft.com/en-us/secu···/2755801 |
|
Jrb2Premium
join:2001-08-31
kudos:3 | reply to dp
Thanks Don and Nick.
KB 2799494 (MS13-017) did keep getting offered on my XP-home SP3 (Dutch). Finally it is OK. I have it now showing twice at the MS Update History  |
|
