Microsoft security bulletin for June 11 2013

Microsoft security bulletin for June 11 2013
Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:
http://technet.microsoft.com/en-us/security/bulletin/ms13-047


Critical (1)
Microsoft Security Bulletin MS13-047
Cumulative Security Update for Internet Explorer (2838727)
http://technet.microsoft.com/en-us/security/bulletin/ms13-047


Important (4)
Microsoft Security Bulletin MS13-048
Vulnerability in Windows Kernel Could Allow Information Disclosure (2839229)
http://technet.microsoft.com/en-us/security/bulletin/ms13-048

Microsoft Security Bulletin MS13-049
Vulnerability in Kernel-Mode Driver Could Allow Denial of Service (2845690)
http://technet.microsoft.com/en-us/security/bulletin/ms13-049

Microsoft Security Bulletin MS13-050
Vulnerability in Windows Print Spooler Components Could Allow Elevation of Privilege (2839894)
http://technet.microsoft.com/en-us/security/bulletin/ms13-050

Microsoft Security Bulletin MS13-051
Vulnerability in Microsoft Office Could Allow Remote Code Execution (2839571)
http://technet.microsoft.com/en-us/security/bulletin/ms13-051

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact For home users, no-charge support for security updates (only!) is available by calling 800-MICROSOFT (800-642-7676) in the US or 877-568-2495 in Canada.

As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.

 

TechNet Webcast: Information about the June 2013 Security Bulletin Release

Event ID: 1032538733


Language(s): English.


Product(s): computer security and information security.


Audience(s): IT Decision Maker, IT Implem_IT Generalist and IT Manager.

Starts: Wednesday, June 12, 2013 11:00 AM
Time zone: (GMT-08:00) Pacific Time (US & Canada)
Duration: 1 hour(s)

Join us for a brief overview of the technical details of this month's Microsoft security bulletins. We intend to address your concerns in this webcast. Therefore, Microsoft security experts devote most of this webcast to answering the questions that you ask.


Presented by:

Dustin Childs, Group Manager, Response Communications, Microsoft Corporation

and

TBD


Register now for the June Security Bulletin webcast.

 

Microsoft Security Advisory (2755801)

Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10

Published: Friday, September 21, 2012 | Updated: Tuesday, June 11, 2013

Version: 13.0


General Information

Executive Summary

Microsoft is announcing the availability of an update for Adobe Flash Player in Internet Explorer 10 on all supported editions of Windows 8, Windows Server 2012, and Windows RT. The update addresses the vulnerabilities in Adobe Flash Player by updating the affected Adobe Flash libraries contained within Internet Explorer 10.

Revisions
V1.0 (September 21, 2012): Advisory published.
V2.0 (October 8, 2012): Added the 2758994 update to the Current Update section.
V3.0 (October 23, 2012): Revised advisory to announce the availability of the 2758994 update for Windows RT.
V4.0 (November 6, 2012): Added the 2770041 update to the Current Update section.
V5.0 (December 11, 2012): Added the 2785605 update to the Current Update section.
V6.0 (January 8, 2013): Added the 2796096 update to the Current Update section.
V7.0 (February 7, 2013): Added the 2811522 update to the Current Update section.
V8.0 (February 12, 2013): Added the 2805940 update to the Current Update section.
V9.0 (February 26, 2013): Added the 2819372 update to the Current Update section.
V10.0 (March 12, 2013): Added the 2824670 update to the Current Update section.
V11.0 (April 9, 2013): Added the 2833510 update to the Current Update section.
V12.0 (May 14, 2013): Added the 2840613 update to the Current Update section.
V12.1 (May 14, 2013): Revised advisory to show the correct update and KB article numbers for update 2837385 released on May 14, 2013.
V13.0 (June 11, 2013): Added the 2847928 update to the Current Update section.
http://technet.microsoft.com/en-us/security/advisory/2755801





Microsoft Security Advisory (2854544)

Update to Improve Cryptography and Digital Certificate Handling in Windows

Published: Tuesday, June 11, 2013

Version: 1.0


General Information

Executive Summary

Microsoft is announcing the availability of an update as part of ongoing efforts to improve cryptography and digital certificate handling in Windows. Over the course of months, Microsoft will continue to announce additional updates via this advisory, all aimed at bolstering the Windows cryptography and certificate handling infrastructure in response to an evolving threat environment.

Recommendation. Microsoft recommends that customers apply the current update at the earliest opportunity. Please see the Current Update section of this advisory for more information.


Revisions
V1.0 (June 11, 2013): Advisory published.
http://technet.microsoft.com/en-us/security/advisory/2854544

 

Title: Microsoft Security Bulletin Re-Releases
Issued: June 25, 2013
********************************************************************

Summary
=======
The following bulletins have undergone a major revision increment.
Please see the appropriate bulletin for more details.

* MS13-029 - Critical
* MS13-apr


Bulletin Information:
=====================

* MS13-029 - Critical

- https://technet.microsoft.com/security/bulletin/MS13-029
- Reason for Revision: V2.0 (June 25, 2013): Revised bulletin to
rerelease the 2813347 update for Remote Desktop Connection 7.0
Client on Windows XP Service Pack 3. Microsoft recommends that
customers running the affected software apply the rereleased
security update immediately. For more information, see the
Update FAQ.
- Originally posted: April 9, 2013
- Updated: June 25, 2013
- Bulletin Severity Rating: Critical
- Version: 2.0

* MS13-apr

- https://technet.microsoft.com/security/bulletin/ms13-apr
- Reason for Revision: V4.0 (June 25, 2013): For MS13-029,
revised bulletin to rerelease the 2813347 update for Remote
Desktop Connection 7.0 Client on Windows XP Service Pack 3.
See bulletin for details.
- Originally posted: April 9, 2013
- Updated: June 25, 2013
- Version: 4.0