Tuesday, March 12, 2013

Microsoft Security Bulletin Release for March 2013

Microsoft released seven (7) bulletins.  Four bulletins are identified as Critical with three bulletins rated Important.

The critical bulletins address 20 vulnerabilities in Microsoft Windows, Office, Internet Explorer, Server Tools, and Silverlight.  The bulletins rated Important address issues in Microsoft Windows and Office.

With today's Windows Update, Internet Explorer 10 in Windows 8 and Windows RT is being updated to enable Flash content to run by default. On Windows 8, all Flash content continues to be enabled for IE on the desktop. Additional information is available in the IE Blog post, Flash in Windows 8.

Included in updates today is an update addressing an issue in the Kernel-Mode Drivers where an attacker could own your machine by inserting a malicious USB device.  In this scenario, logging on to the machine is not required.  Additional details about the update are available in the below-linked MSRC Blog post.

Bulletin NumberBulletin TitleBulletin KB
MS13-021Cumulative Security Update for Internet Explorer 2809289
MS13-022Vulnerability in Microsoft Windows 2814124
MS13-023Vulnerability in Microsoft Office 2801261
MS13-024Vulnerabilities in Microsoft Office 2780176
MS13-025Vulnerability in Microsoft Office 2816264
MS13-026Vulnerability in Microsoft Office 2813682
MS13-027Vulnerabilities in Microsoft Windows 2807986


The following additional information is provided in the Security Bulletin:


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

No comments: