dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
2320
share rss forum feed


dp
Premium,MVM
join:2000-12-08
Greensburg, PA
kudos:7

5 recommendations

Microsoft Security Bulletin(s) for February 12, 2013

Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:

»technet.microsoft.com/en-us/secu···ms13-feb

Critical (5)

Microsoft Security Bulletin MS13-009
Cumulative Security Update for Internet Explorer (2792100)
»technet.microsoft.com/en-us/secu···ms13-009

Microsoft Security Bulletin MS13-010
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (2797052)
»technet.microsoft.com/en-us/secu···ms13-010

Microsoft Security Bulletin MS13-011
Vulnerability in Media Decompression Could Allow Remote Code Execution (2780091)
»technet.microsoft.com/en-us/secu···ms13-011

Microsoft Security Bulletin MS13-012
Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2809279)
»technet.microsoft.com/en-us/secu···ms13-012

Microsoft Security Bulletin MS13-020
Vulnerability in OLE Automation Could Allow Remote Code Execution (2802968)
»technet.microsoft.com/en-us/secu···ms13-020

Important (7)

Microsoft Security Bulletin MS13-013
Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution (2784242)
»technet.microsoft.com/en-us/secu···ms13-013

Microsoft Security Bulletin MS13-014
Vulnerability in NFS Server Could Allow Denial of Service (2790978)
»technet.microsoft.com/en-us/secu···ms13-014

Microsoft Security Bulletin MS13-015
Vulnerability in .NET Framework Could Allow Elevation of Privilege (2800277)
»technet.microsoft.com/en-us/secu···ms13-015

Microsoft Security Bulletin MS13-016
Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)
»technet.microsoft.com/en-us/secu···ms13-016

Microsoft Security Bulletin MS13-017
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2799494)
»technet.microsoft.com/en-us/secu···ms13-017

Microsoft Security Bulletin MS13-018
Vulnerability in TCP/IP Could Allow Denial of Service (2790655)
»technet.microsoft.com/en-us/secu···ms13-018

Microsoft Security Bulletin MS13-019
Vulnerability in Windows Client/Server Run-time Subsystem (CSRSS) Could Allow Elevation of Privilege (2790113)
»technet.microsoft.com/en-us/secu···ms13-019

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.
--
Microsoft® Consumer Security MVP, 2004 - 2013
DP's Security Bits



NICK ADSL UK
Premium,MVM
join:2004-02-22
kudos:16
Reviews:
·Zen Internet

3 recommendations

thanks don

TechNet Webcast: Information About the February 2013 Security Bulletin Release

Event ID: 1032538626

Starts: Wednesday, February 13, 2013 11:00 AM
Time zone: (GMT-08:00) Pacific Time (US & Canada)
Duration: 1 hour(s)


Language(s): English.

Product(s): computer security and information security.

Audience(s): IT Decision Maker, IT Implem_IT Generalist and IT Manager.

Join us for a brief overview of the technical details of this month's Microsoft security bulletins. We intend to address your concerns in this webcast. Therefore, Microsoft security experts devote most of this webcast to answering the questions that you ask.

Presented by:

Dustin Childs, Group Manager, Response Communications, Microsoft Corporation

and

TBD

Register now for the February Security Bulletin webcast.
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security



DrHaze

join:2012-12-27

I just updated.
I am running Windows 8 x64 And Office 2013 x64.

The updates were 305 megabytes..glad that's over



Cudni
La Merma - Vigilado
Premium,MVM
join:2003-12-20
Someshire
kudos:13
reply to dp

Thanks for update. It took a bit longer than usual to find all the applicable updates (86Mb worth). All well

Cudni



antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
United State
kudos:4
reply to dp

So far so good on my two 64-bit W7 SP1 (IE8; UE and EE), 64-bit Vista HPE SP2 (IE7), and two XP SP3 (Pro. and Home) machines.


art22gg
Premium
join:2005-02-16
Courtenay, BC
kudos:6
reply to dp

Thanks dp...



siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:17
Reviews:
·Bell Sympatico

1 recommendation

reply to dp

Was less painful than was anticipated:

Microsoft Security Bulletin MS13-009 - Critical
• Cumulative Security Update for Internet Explorer (2792100)
»technet.microsoft.com/en-us/secu···ms13-009

Microsoft Security Bulletin MS13-010 - Critical
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (2797052)
• »technet.microsoft.com/en-us/secu···ms13-010

MS13-015: Description of the security update for the .NET Framework 3.5.1 on Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: February 12, 2013
• »support.microsoft.com/kb/2789645

MS13-015: Description of the security update for the .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2: February 12, 2013
• »support.microsoft.com/kb/2789642

Microsoft Security Bulletin MS13-016 - Important
Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)
• »technet.microsoft.com/en-us/secu···ms13-016

Microsoft Security Bulletin MS13-019 - Important
Vulnerability in Windows Client/Server Run-time Subsystem (CSRSS) Could Allow Elevation of Privilege (2790113)
• »technet.microsoft.com/en-us/secu···ms13-019

Microsoft Security Bulletin MS13-018 - Important
Vulnerability in TCP/IP Could Allow Denial of Service (2790655)
• »technet.microsoft.com/en-us/secu···ms13-018

Microsoft Security Bulletin MS13-017 - Important
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2799494)
• »technet.microsoft.com/en-us/secu···ms13-017

And MRT



chachazz
Premium
join:2003-12-14
kudos:9
reply to dp

Thank you, dp See Profile.



lilhurricane
Crunchin' For Cures
Premium,Mod
join:2003-01-11
Purple Zone
kudos:57
reply to dp

No issues here..done without ado - thanks Dp

..and appreciate the added info as well, Nick



MarkAW
Barry White
Premium
join:2001-08-27
Canada
kudos:16

1 recommendation

reply to dp

Click for full size
Thanks dp See Profile and NICK ADSL UK See Profile ended up with 9 updates for my Win 7 pro.

Mele20
Premium
join:2001-06-05
Hilo, HI
kudos:5
reply to dp

Click for full size
I've only done the IE Cumulative Update for IE 10 on Win 8 so far. It required a reboot!

Then when I started IE, it acted like I have NEVER USED IE BEFORE! What was that all about?

Why didn't Microsoft include the Flash update? It is a pain in the butt to find it on Microsoft's support site. (I don't use WU).
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson


chachazz
Premium
join:2003-12-14
kudos:9
Reviews:
·TELUS

said by Mele20:

Why didn't Microsoft include the Flash update? It is a pain in the butt to find it on Microsoft's support site. (I don't use WU).

It's pretty easy to find at
»www.microsoft.com/en-us/download···ult.aspx

Find Downloads: Select IE > Select OS [Win 8] > Sort by: Newest to Oldest

comes up as #2 and #3 on the page.

Mele20
Premium
join:2001-06-05
Hilo, HI
kudos:5

I use Firefox and it will not filter there by Newest to Oldest if you select the OS as Win 8. It will filter only by relevancy and it is not in the top 20.

If I do a search for Flash Player for Windows 8 nothing is found later than early JANUARY 2013.

So, it is NOT easy to find. It is extremely difficult if you use Fx. Granted, I still am on Fx 10 ESR. Maybe the current Fx will filter by Newest to Oldest but I dread having to update Fx. I have the latest Opera and SeaMonkey and both are terrible. So, I am very hesitant to update Fx.

I suppose if I use IE 10 it would find it more easily but I hate IE. I am only updating it because it is embedded in IE. Microsoft should never have embedded it. Embedded in Chrome is horrible too (so I don't use Chrome). In Fx, I have the Flash Plugin disabled but guess what? When I updated it, the plugin became silently enabled! UGH.
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson



onDvine
Don't Litter. Spay-Neuter.
Premium
join:2005-01-29
So. CA, USA
kudos:9
reply to dp

Muchas gracias, dp!


Libra
Premium
join:2003-08-06
USA
kudos:1
reply to dp

Thank you dp. I just updated one Vista 32bit Sp2 and two Windows 7 64bit and all is well.

Sincerely, Libra


redwolfe_98
Premium
join:2001-06-11
kudos:1
Reviews:
·Time Warner Cable
reply to Mele20

said by Mele20:

Why didn't Microsoft include the Flash update? It is a pain in the butt to find it on Microsoft's support site. (I don't use WU).

it seems that MS always releases an "advisory" for "flash player"-updates, for IE 10, so, you could get the update for "flash player", for IE 10, by checking MS's "advisories":

»technet.microsoft.com/en-us/secu···/2755801

Jrb2
Premium
join:2001-08-31
kudos:3
reply to dp

Thanks Don and Nick.

KB 2799494 (MS13-017) did keep getting offered on my XP-home SP3 (Dutch). Finally it is OK. I have it now showing twice at the MS Update History