Technical Discussion
  >> Windows Issues


Register (or login) on our website and you will not see this ad.


Pages in this thread: 1 | 2 | (show all)   Print Thread
Standard User NICK_ADSL_UK
(fountain of knowledge) Tue 09-Apr-13 18:30:41
Print Post

Microsoft security bulletin for April 9 2013


[link to this post]
 
Microsoft security bulletin for April 9 2013
Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:
http://technet.microsoft.com/en-us/security/bulletin...


Critical (2)
Microsoft Security Bulletin MS13-028
Cumulative Security Update for Internet Explorer (2817183)
http://technet.microsoft.com/en-us/security/bulletin...

Microsoft Security Bulletin MS13-029
Vulnerability in Remote Desktop Client Could Allow Remote Code Execution (2828223)
http://technet.microsoft.com/en-us/security/bulletin...


Important (7)
Microsoft Security Bulletin MS13-030
Vulnerability in SharePoint Could Allow Information Disclosure (2827663)
http://technet.microsoft.com/en-us/security/bulletin...

Microsoft Security Bulletin MS13-031
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2813170)
http://technet.microsoft.com/en-us/security/bulletin...

Microsoft Security Bulletin MS13-032
Vulnerability in Active Directory Could Lead to Denial of Service (2830914)
http://technet.microsoft.com/en-us/security/bulletin...

Microsoft Security Bulletin MS13-033
Vulnerability in Windows Client/Server Run-time Subsystem (CSRSS) Could Allow Elevation of Privilege (2820917)
http://technet.microsoft.com/en-us/security/bulletin...

Microsoft Security Bulletin MS13-034
Vulnerability in Microsoft Antimalware Client Could Allow Elevation of Privilege (2823482)
http://technet.microsoft.com/en-us/security/bulletin...

Microsoft Security Bulletin MS13-035
Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2821818)
http://technet.microsoft.com/en-us/security/bulletin...

Microsoft Security Bulletin MS13-036
Vulnerabilities in Kernel-Mode Driver Could Allow Elevation Of Privilege (2829996)
http://technet.microsoft.com/en-us/security/bulletin...

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact For home users, no-charge support for security updates (only!) is available by calling 800-MICROSOFT (800-642-7676) in the US or 877-568-2495 in Canada.

As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.

Wilders Security Admin
Microsoft MVP - Consumer Security


For the latest in virus software signatures
From the Security specialists
Wilders security

Keep Your Security /Software Current
Upgrades, Updates & Definitions
Major Geeks

Microsoft Security Advisories
Standard User MrTAToad2
(eat-sleep-adslguide) Thu 11-Apr-13 16:45:30
Print Post

Re: Microsoft security bulletin for April 9 2013


[re: NICK_ADSL_UK] [link to this post]
 
When is the service pack/major update going to be released ?

Follow me on Twitter. Possibly inbetween ISP's at the moment.
My Blog
12 Things...
Standard User NICK_ADSL_UK
(fountain of knowledge) Thu 11-Apr-13 16:58:00
Print Post

Re: Microsoft security bulletin for April 9 2013


[re: MrTAToad2] [link to this post]
 
In reply to a post by MrTAToad2:
When is the service pack/major update going to be released ?


All the current service packs can be found here

their are no dates as yet for any additional service packs

http://windows.microsoft.com/en-GB/windows/service-p...

Wilders Security Admin
Microsoft MVP - Consumer Security


For the latest in virus software signatures
From the Security specialists
Wilders security

Keep Your Security /Software Current
Upgrades, Updates & Definitions
Major Geeks

Microsoft Security Advisories


Register (or login) on our website and you will not see this ad.

Standard User Oldjim
(fountain of knowledge) Fri 12-Apr-13 16:43:19
Print Post

Re: Microsoft security bulletin for April 9 2013


[re: NICK_ADSL_UK] [link to this post]
 
whoops http://blogs.technet.com/b/msrc/archive/2013/04/11/k...
We are aware that some of our customers may be experiencing difficulties after applying security update 2823324, which we provided in security bulletin MS13-036 on Tuesday, April 9. We’ve determined that the update, when paired with certain third-party software, can cause system errors. As a precaution, we stopped pushing 2823324 as an update when we began investigating the error reports, and have since removed it from the download center.
and it looks as though it may hit Kaspersky although I haven't seen the problem http://www.theregister.co.uk/2013/04/12/ms_buggy_fix... and there isn't anything on the Kaspersky Forums as far as I can see
Standard User bobble_bob
(experienced) Fri 12-Apr-13 18:24:25
Print Post

Re: Microsoft security bulletin for April 9 2013


[re: Oldjim] [link to this post]
 
This is why i dont have auto updates on, and instead i let Windows tell me about them but decide myself when to install. Always worth waiting a few days to see if any issues appear.
Standard User 4M2
(fountain of knowledge) Fri 12-Apr-13 18:27:52
Print Post

Re: Microsoft security bulletin for April 9 2013


[re: Oldjim] [link to this post]
 
In reply to a post by Oldjim:
whoops http://blogs.technet.com/b/msrc/archive/2013/04/11/k...
We are aware that some of our customers may be experiencing difficulties after applying security update 2823324, which we provided in security bulletin MS13-036 on Tuesday, April 9. We’ve determined that the update, when paired with certain third-party software, can cause system errors. As a precaution, we stopped pushing 2823324 as an update when we began investigating the error reports, and have since removed it from the download center.
and it looks as though it may hit Kaspersky although I haven't seen the problem http://www.theregister.co.uk/2013/04/12/ms_buggy_fix... and there isn't anything on the Kaspersky Forums as far as I can see


Yes I had that problem with XP and KIS2013 a few days ago but I inadvertently posted here http://forums.thinkbroadband.com/windows/f/4209805-m... in error blush
Standard User GeoffB
(fountain of knowledge) Fri 12-Apr-13 18:32:59
Print Post

Re: Microsoft security bulletin for April 9 2013


[re: 4M2] [link to this post]
 
I just uninstalled 2823324 through Add/Remove programs. The 'preparing to configure Windows' message appeared as it shut down, but didn't go away. After 30 minutes I switched off manually and the update has disappeared. Do this at your own risk, of course! Computer seems fine (touch wood).

Dell Studio1558 with Win7 Home Premium
8GB RAM
IE10 and Live Mail
BT Infinity via HH3
VM 120Mb/s (using Ethernet)
Standard User bobble_bob
(experienced) Fri 12-Apr-13 18:58:46
Print Post

Re: Microsoft security bulletin for April 9 2013


[re: GeoffB] [link to this post]
 
If you install and it reboots fine, is that ok? Or can it still happen at random?
Standard User 4M2
(fountain of knowledge) Fri 12-Apr-13 19:07:12
Print Post

Re: Microsoft security bulletin for April 9 2013


[re: GeoffB] [link to this post]
 
Well actually there is a bit more to my story, which I only briefly outlined before:

Had to run SFC.EXE /SCANNOW and repair a few DDL's with the XP disc in the cd drive after I was notified of the updates and tried to install them. Something got corrupted by KIS2013 and it was only when I paused KIS2013 protection was I able to install the Windows updates from Start > All Programs > Windows Updates > IE8.

I will have a look at that XP machine running KIS2013 tonight, boot it, and check whether I can access the Windows Update web page from IE8.

BTW. Windows updates caused no problems on another machine running XP, IE8 and KIS2012.

Many thanks for your suggestion for the fix and details of what happened in your case smile

Edited by 4M2 (Fri 12-Apr-13 19:09:22)

Standard User GeoffB
(fountain of knowledge) Fri 12-Apr-13 20:04:16
Print Post

Re: Microsoft security bulletin for April 9 2013


[re: bobble_bob] [link to this post]
 
After I had installed it my computer was fine. But if the advice from Microsoft is to uninstall, best to play safe I suppose. I've had issues in the past trying to uninstall from Add/Remove programs - I think that this is the first time I've had to uninstall a Windows Update file, so a new experience for me. There doesn't seem to be any widespread issue as the forums are very quiet. I remember a year or two back when McAfee put out a dodgy antivirus update file - now that was real fun to get rid of!!

Dell Studio1558 with Win7 Home Premium
8GB RAM
IE10 and Live Mail
BT Infinity via HH3
VM 120Mb/s (using Ethernet)
Pages in this thread: 1 | 2 | (show all)   Print Thread

Jump to