Microsoft Security Bulletin Summary for November 2013
This bulletin summary lists security bulletins released for November 2013.
With the release of the bulletins for November 2013, this bulletin summary replaces the bulletin advance notification originally issued on November 7, 2013. For more information about the bulletin advance notification service, see http://technet.microsoft.com/security/bulletin/advance.
To receive automatic notifications whenever Microsoft Security Bulletins are issued, subscribe to Microsoft Technical Security Notifications at http://technet.microsoft.com/security/dd252948.
Critical Security Bulletins
============================
MS13-088
Affected Software:
– Windows XP Service Pack 3
— Internet Explorer 6
— Internet Explorer 7
— Internet Explorer 8
– Windows XP Professional x64 Edition Service Pack 2
— Internet Explorer 6
— Internet Explorer 7
— Internet Explorer 8
– Windows Server 2003 Service Pack 2
— Internet Explorer 6
— Internet Explorer 7
— Internet Explorer 8
– Windows Server 2003 x64 Edition Service Pack 2
— Internet Explorer 6
— Internet Explorer 7
— Internet Explorer 8
– Windows Server 2003 with SP2 for Itanium-based Systems
— Internet Explorer 6
— Internet Explorer 7
– Windows Vista Service Pack 2
— Internet Explorer 7
— Internet Explorer 8
— Internet Explorer 9
– Windows Vista x64 Edition Service Pack 2
— Internet Explorer 7
— Internet Explorer 8
— Internet Explorer 9
– Windows Server 2008 for 32-bit Systems Service Pack 2
— Internet Explorer 7
— Internet Explorer 8
— Internet Explorer 9 (Windows Server 2008 Server Core installation not affected)
– Windows Server 2008 for x64-based Systems Service Pack 2
— Internet Explorer 7
— Internet Explorer 8
— Internet Explorer 9 (Windows Server 2008 Server Core installation not affected)
– Windows Server 2008 for Itanium-based Systems Service Pack 2
— Internet Explorer 7
– Windows 7 for 32-bit Systems Service Pack 1
— Internet Explorer 8
— Internet Explorer 9
— Internet Explorer 10
– Windows 7 for x64-based Systems Service Pack 1
— Internet Explorer 8
— Internet Explorer 9
— Internet Explorer 10
– Windows Server 2008 R2 for x64-based Systems Service Pack 1
— Internet Explorer 8
— Internet Explorer 9
— Internet Explorer 10 (Windows Server 2008 R2 Server Core installation not affected)
– Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
— Internet Explorer 8
– Windows 8 for 32-bit Systems:
— Internet Explorer 10
– Windows 8 for x64-based Systems:
— Internet Explorer 10
– Windows Server 2012:
— Internet Explorer 10 (Windows Server 2012 Server Core installation not affected)
– Windows RT:
— Internet Explorer 10
– Windows 8.1 for 32-bit Systems:
— Internet Explorer 11
– Windows 8.1 for x64-based Systems
— Internet Explorer 11
– Windows Server 2012 R2:
— Internet Explorer 11 (Windows Server 2012 R2 Server Core installation not affected)
– Windows RT 8.1
— Internet Explorer 11
Impact: Remote Code Execution
Version Number: 1.0MS13-089
Affected Software:
– Windows XP Service Pack 3
– Windows XP Professional x64 Edition Service Pack 2
– Windows Server 2003 Service Pack 2
– Windows Server 2003 x64 Edition Service Pack 2
– Windows Server 2003 with SP2 for Itanium-based Systems
– Windows Vista Service Pack 2
– Windows Vista x64 Edition Service Pack 2
– Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
– Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
– Windows Server 2008 for Itanium-based Systems Service Pack 2
– Windows 7 for 32-bit Systems Service Pack 1
– Windows 7 for x64-based Systems Service Pack 1
– Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Windows Server 2008 R2 Server Core installation affected)
– Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
– Windows 8 for 32-bit Systems
– Windows 8 for x64-based Systems
– Windows 8.1 for 32-bit Systems
– Windows 8.1 for x64-based Systems
– Windows Server 2012 (Windows Server 2012 Server Core installation affected)
– Windows Server 2012 R2 (Windows Server 2012 R2 Server Core installation affected)
– Windows RT
– Windows RT 8.1
Impact: Remote Code Execution
Version Number: 1.0MS13-090
Affected Software:
– Windows XP Service Pack 3
– Windows XP Professional x64 Edition Service Pack 2
– Windows Server 2003 Service Pack 2
– Windows Server 2003 x64 Edition Service Pack 2
– Windows Server 2003 with SP2 for Itanium-based Systems
– Windows Vista Service Pack 2
– Windows Vista x64 Edition Service Pack 2
– Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
– Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
– Windows Server 2008 for Itanium-based Systems Service Pack 2
– Windows 7 for 32-bit Systems Service Pack 1
– Windows 7 for x64-based Systems Service Pack 1
– Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Windows Server 2008 R2 Server Core installation not affected)
– Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
– Windows 8 for 32-bit Systems
– Windows 8 for x64-based Systems
– Windows 8.1 for 32-bit Systems
– Windows 8.1 for x64-based Systems
– Windows Server 2012 (Windows Server 2012 Server Core installation not affected)
– Windows Server 2012 R2 (Windows Server 2012 R2 Server Core installation not affected)
– Windows RT
– Windows RT 8.1
Impact: Remote Code Execution
Version Number: 1.0MS13-091
Affected Software:
– Microsoft Office 2003 Service Pack 3
– Microsoft Office 2007 Service Pack 3
– Microsoft Office 2010 Service Pack 1 (32-bit editions)
– Microsoft Office 2010 Service Pack 1 (64-bit editions)
– Microsoft Office 2010 Service Pack 2 (32-bit editions)
– Microsoft Office 2010 Service Pack 2 (64-bit editions)
– Microsoft Office 2013 (32-bit editions)
– Microsoft Office 2013 (64-bit editions)
– Microsoft Office 2013 RT
Impact: Remote Code Execution
Version Number: 1.0MS13-092
Affected Software:
– Windows 8 for x64-based Systems (Pro and Enterprise editionsonly)
– Windows Server 2012 (Standard and Datacenter editions and Hyper-V Server 2012 only)
(Windows Server 2012 Server Core installation affected)
Impact: Elevation of Privilege
Version Number: 1.0MS13-093
Affected Software:
– Windows XP Professional x64 Edition Service Pack 2
– Windows Server 2003 x64 Edition Service Pack 2
– Windows Server 2003 with SP2 for Itanium-based Systems
– Windows Vista x64 Edition Service Pack 2
– Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
– Windows Server 2008 for Itanium-based Systems Service Pack 2
– Windows 7 for x64-based Systems Service Pack 1
– Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Windows Server 2008 R2 Server Core installation affected)
– Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
– Windows 8 for x64-based Systems
– Windows Server 2012 (Windows Server 2012 Server Core installation affected)
Impact: Information Disclosure
Version Number: 1.0MS13-094
Affected Software:
– Microsoft Outlook 2007 Service Pack 3
– Microsoft Outlook 2010 Service Pack 1 (32-bit editions)
– Microsoft Outlook 2010 Service Pack 1 (64-bit editions)
– Microsoft Outlook 2010 Service Pack 2 (32-bit editions)
– Microsoft Outlook 2010 Service Pack 2 (64-bit editions)
– Microsoft Outlook 2013 (32-bit editions)
– Microsoft Outlook 2013 (64-bit editions)
– Microsoft Outlook 2013 RT
Impact: Information Disclosure
Version Number: 1.0MS13-095
Affected Software:
– Windows XP Service Pack 3
– Windows XP Professional x64 Edition Service Pack 2
– Windows Server 2003 Service Pack 2
– Windows Server 2003 x64 Edition Service Pack 2
– Windows Server 2003 with SP2 for Itanium-based Systems
– Windows Vista Service Pack 2
– Windows Vista x64 Edition Service Pack 2
– Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
– Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
– Windows Server 2008 for Itanium-based Systems Service Pack 2
– Windows 7 for 32-bit Systems Service Pack 1
– Windows 7 for x64-based Systems Service Pack 1
– Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Windows Server 2008 R2 Server Core installation affected)
– Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
– Windows 8 for 32-bit Systems
– Windows 8 for x64-based Systems
– Windows 8.1 for 32-bit Systems
– Windows 8.1 for x64-based Systems
– Windows Server 2012 (Windows Server 2012 Server Core installation affected)
– Windows Server 2012 R2 (Windows Server 2012 R2 Server Core installation affected)
– Windows RT
– Windows RT 8.1
Impact: Denial of Service
Version Number: 1.0