dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
1668
share rss forum feed


dp
Premium,MVM
join:2000-12-08
Greensburg, PA
kudos:7

3 recommendations

Microsoft Security Bulletin(s) for December 10, 2013

Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:

»technet.microsoft.com/en-us/secu···ms13-dec

Critical (5)

Microsoft Security Bulletin MS13-096
Vulnerability in Microsoft Graphics Component Could allow Remote Code Execution (2908005)
»technet.microsoft.com/en-us/secu···ms13-096

Microsoft Security Bulletin MS13-097
Cumulative Security Update for Internet Explorer (2898785)
»technet.microsoft.com/en-us/secu···ms13-097

Microsoft Security Bulletin MS13-098
Vulnerability in Windows Could Allow Remote Code Execution (2893294)
»technet.microsoft.com/en-us/secu···ms13-098

Microsoft Security Bulletin MS13-099
Vulnerability in Microsoft Scripting Runtime Object Library Could Allow Remote Code Execution (2909158)
»technet.microsoft.com/en-us/secu···ms13-099

Microsoft Security Bulletin MS13-105
Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2915705)
»technet.microsoft.com/en-us/secu···ms13-105

Important (6)

Microsoft Security Bulletin MS13-100
Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2904244)
»technet.microsoft.com/en-us/secu···ms13-100

Microsoft Security Bulletin MS13-101
Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2880430)
»technet.microsoft.com/en-us/secu···ms13-101

Microsoft Security Bulletin MS13-102
Vulnerability in LRPC Client Could Allow Elevation of Privilege (2898715)
»technet.microsoft.com/en-us/secu···ms13-102

Microsoft Security Bulletin MS13-103
Vulnerability in ASP.NET SignalR Could Allow Elevation of Privilege (2905244)
»technet.microsoft.com/en-us/secu···ms13-103

Microsoft Security Bulletin MS13-104
Vulnerability in Microsoft Office Could Allow Information Disclosure (2909976)
»technet.microsoft.com/en-us/secu···ms13-104

Microsoft Security Bulletin MS13-106
Vulnerability in a Microsoft Office Shared Component Could Allow Security Feature Bypass (2905238)
»technet.microsoft.com/en-us/secu···ms13-106

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.
--
Microsoft® Consumer Security MVP, 2004 - 2013
DP's Security Bits


NICK ADSL UK
Premium,MVM
join:2004-02-22
kudos:16
Reviews:
·Zen Internet

2 recommendations

thanks Don

Microsoft Webcast: Information about the December 2013 Security Bulletin Release

Event ID:

1032557386

Starts: Wednesday, December 11, 2013 11:00 AM
Time zone: (GMT-08:00) Pacific Time (US & Canada)
Duration: 1 hour(s)


Language(s):

English.

Product(s):

computer security and information security.

Audience(s):

IT Decision Maker and IT Manager.

Join us for a brief overview of the technical details of this month's Microsoft security bulletins. We intend to address your concerns in this webcast. Therefore, Microsoft security experts devote most of this webcast to answering the questions that you ask.

Presented by:

Dustin Childs, Group Manager, Response Communications, Microsoft Corporation

and

TBD

Register now for the December Security Bulletin webcast.
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security



MarkAW
Barry White
Premium
join:2001-08-27
Canada
kudos:16

1 recommendation

reply to dp
Thanks dp See Profile and NICK ADSL UK See Profile got 9 updates for my win7 systems.


PatchTues

@comcast.net

1 recommendation

reply to dp
Applied 12 updates to my Win 8.1 64 bit laptop. A reboot was needed. Everything looks good so far.


Applied 12 updates to my Win 7 Home Premium 32 bit desktop. A reboot was needed. Everything looks good so far.



siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:18
Reviews:
·Bell Sympatico

1 recommendation

reply to dp
Click for full size
All done and thanks for the monthly guidance as always.

MS13-096: Description of the security update for Office 2003: December 10, 2013
»support.microsoft.com/kb/2850047

MS13-097: Cumulative security update for Internet Explorer: December 10, 2013
»support.microsoft.com/kb/2898785

The .NET Framework 4.5.1 and its corresponding language packs are available on Windows Update
»support.microsoft.com/kb/2858725

MS13-101: Description of the security update for Windows kernel-mode drivers: December 10, 2013
»support.microsoft.com/kb/2887069

MS13-099: Description of the security update for Windows Script 5.8: December 10, 2013
»support.microsoft.com/kb/2892074

MS13-098: Vulnerability in Windows could allow remote code execution: December 10, 2013
»support.microsoft.com/kb/2893294

MS13-101: Description of the security update for Windows kernel-mode drivers: December 10, 2013
»support.microsoft.com/kb/2893984

December 2013 cumulative time zone update for Windows operating systems
»support.microsoft.com/kb/2904266

Windows Media Player freezes when you use AutoPlay for an audio CD in Windows 7
»support.microsoft.com/kb/2847077

Windows Photo Viewer prints white lines when you use an XPS driver to print photos in Windows
»support.microsoft.com/kb/2913152

art22gg
Premium
join:2005-02-16
Courtenay, BC
kudos:6
reply to dp
Thanks dp...


chachazz
Premium
join:2003-12-14
kudos:9
reply to dp
Thanks, dp See Profile.


NICK ADSL UK
Premium,MVM
join:2004-02-22
kudos:16
Reviews:
·Zen Internet
reply to dp
Security updates for December 10, 2013
Learn how to get security updates automatically
»click.email.microsoftemail.com/?···d283be64

Get updates from Microsoft Update
»click.email.microsoftemail.com/?···792d0fce

Watch a video about the updates
»click.email.microsoftemail.com/?···d7fe144d
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security



Buddel
If it ain't broke, don't fix it.
Premium
join:2004-03-06
EU
kudos:3

1 recommendation

said by NICK ADSL UK:

Security updates for December 10, 2013
Learn how to get security updates automatically
»click.email.microsoftemail.com/?···d283be64

This link doesn't work here (FF 26.0).


Dustyn
Premium
join:2003-02-26
Ontario, CAN
kudos:11

1 recommendation

reply to dp
Click for full size
Thanks dp See Profile and NICK ADSL UK See Profile. I received 14 for Windows 7 SP1 64-bit.


NICK ADSL UK
Premium,MVM
join:2004-02-22
kudos:16
reply to Buddel


Buddel
If it ain't broke, don't fix it.
Premium
join:2004-03-06
EU
kudos:3
Strange, this link doesn't work either. Tried it with both FF 26 and IE 11. Hm...


siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:18
The link works as does this one.
»windows.microsoft.com/en-US/wind···-updates


Buddel
If it ain't broke, don't fix it.
Premium
join:2004-03-06
EU
kudos:3
said by siljaline:

The link works as does this one.
»windows.microsoft.com/en-US/wind···-updates

This link works. Thank you.


siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:18
You're most welcome, Buddel See Profile


ltsnow
Premium
join:2006-04-08
Valdosta, GA
kudos:1

1 recommendation

reply to dp
Installed 5 updates for XP Pro SP3. All is well. MU took forever and never did stop looking for udates. So I used the trick I learned last time---first instll the IE update manually and then it only takes a few seconds for MU to find the remaining ones. Don't know why this problem has started because it never used to be this way.

Mele20
Premium
join:2001-06-05
Hilo, HI
kudos:5
reply to dp
I had something a bit odd happen this go-round. I installed the IE Flash update first which I had gotten from MS Download Center. Then I downloaded several critical patches (including IE Cumulative update). I installed them one by one and then rebooted and Windows told me to wait while it finished installing the updates. That part all went fine and the computer booted to the desktop with no problems. I started IE 10 and it opened four tabs (to my surprise) and no welcome tab! Hmmm....so, I checked About IE and the Cumulative IE update had not finished installing. Does it need to be installed isolated from other patches? Does it need to be installed before installing the Flash patch? Anyhow, it installed ok on the second try.
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson


Oregonian
Premium
join:2000-12-21
West Linn, OR
reply to dp
28 updates (277.1 MB) for Windows 7 and Office 2013.


antdude
A Matrix Ant
Premium,VIP
join:2001-03-25
United State
kudos:5
reply to dp
Ugh, I hate that svchst.exe issue in XP SP3.


siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:18
Reviews:
·Bell Sympatico

1 recommendation

said by antdude:

Ugh, I hate that svchst.exe issue in XP SP3.

MS is actively looking at this with earnest as it has quickly escalated of late.
No magic as of yet.


Dustyn
Premium
join:2003-02-26
Ontario, CAN
kudos:11
reply to ltsnow
What if you then try going back to Windows Update instead of using Microsoft Update? I find Microsoft Update to be slower as it has a much larger catalog of updates (Office, AntiVirus...ect) than Windows Update. I ask only because I see you are using Windows XP.
--
"Graffiti Wall" Dustyn's Wall »[Serious] RIP


antdude
A Matrix Ant
Premium,VIP
join:2001-03-25
United State
kudos:5
Reviews:
·Time Warner Cable
reply to siljaline
said by siljaline:

said by antdude:

Ugh, I hate that svchst.exe issue in XP SP3.

MS is actively looking at this with earnest as it has quickly escalated of late.
No magic as of yet.

Pfffbt, this has been around for months.
--
Ant @ AQFL.net and AntFarm.ma.cx. Please do not IM/e-mail me for technical support. Use this forum or better, »community.norton.com ! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer.


NICK ADSL UK
Premium,MVM
join:2004-02-22
kudos:16
Reviews:
·Zen Internet
reply to dp
December 2013 Security Release ISO Image


Download
This DVD5 ISO image file contains the security updates for Windows released on Windows Update on December 10, 2013.

»www.microsoft.com/en-us/download···id=41534
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security



siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:18
reply to antdude
said by antdude:

Pfffbt, this has been around for months.

Years, m8 \o/


ltsnow
Premium
join:2006-04-08
Valdosta, GA
kudos:1
reply to Dustyn
I don't know Dustyn because I never use Windows Update, but with MU if you manually install the IE update it only takes seconds to get the rest.


antdude
A Matrix Ant
Premium,VIP
join:2001-03-25
United State
kudos:5
Reviews:
·Time Warner Cable
reply to NICK ADSL UK
said by NICK ADSL UK:

December 2013 Security Release ISO Image


Download
This DVD5 ISO image file contains the security updates for Windows released on Windows Update on December 10, 2013.

»www.microsoft.com/en-us/download···id=41534

Really? Interesting.
--
Ant @ AQFL.net and AntFarm.ma.cx. Please do not IM/e-mail me for technical support. Use this forum or better, »community.norton.com ! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer.


Dustyn
Premium
join:2003-02-26
Ontario, CAN
kudos:11
reply to ltsnow
Okay then, just curious.

Libra
Premium
join:2003-08-06
USA
kudos:1
reply to dp
I updated one Vista sp2, and one Windows 7 64bit sp1 computer and it went well.

Sincerely, Libra