MS13-054 - Critical : Vulnerability in GDI+ Could Allow Remote Code Execution (2848295) -...


Extraordinary Robot
News Feed
Severity Rating: Critical
Revision Note: V1.2 (August 13, 2013): Bulletin revised to announce a detection change for the 2687276 update for Microsoft Office 2010. This detection change only affects non-English deployments. There were no changes to the security update files. Customers who have already successfully updated their systems do not need to take any action.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows, Microsoft Office, Microsoft Lync, and Microsoft Visual Studio. The vulnerability could allow remote code execution if a user views shared content that embeds TrueType font files.

Continue reading...

This website is not affiliated, owned, or endorsed by Microsoft Corporation. It is a member of the Microsoft Partner Program.