Microsoft Security Bulletin Summary for September 2013
This bulletin summary lists security bulletins released for September 2013.
With the release of the bulletins for September 2013, this bulletin summary replaces the bulletin advance notification originally issued on September 5, 2013. For more information about the bulletin advance notification service, see http://technet.microsoft.com/security/bulletin/advance.
To receive automatic notifications whenever Microsoft Security Bulletins are issued, subscribe to Microsoft Technical Security Notifications at http://technet.microsoft.com/security/dd252948.
Critical Security Bulletins
============================
MS13-067
Affected Software:
– Microsoft Windows SharePoint Services 2.0
– Microsoft Windows SharePoint Services 3.0 Service Pack 3 (32-bit versions)
– Microsoft Windows SharePoint Services 3.0 Service Pack 3 (64-bit versions)
– Microsoft SharePoint Foundation 2010 Service Pack 1
– Microsoft SharePoint Server 2010 Service Pack 1
– Microsoft SharePoint Foundation 2010 Service Pack 2
– Microsoft SharePoint Server 2010 Service Pack 2
– Microsoft SharePoint Foundation 2013
– Microsoft SharePoint Server 2013
– Excel Services on Microsoft SharePoint Server 2007 Service Pack 3 (32-bit editions)
– Excel Services on Microsoft SharePoint Server 2007 Service Pack 3 (64-bit editions)
– Excel Services on Microsoft SharePoint Server 2010 Service Pack 1
– Microsoft Business Productivity Servers on Microsoft SharePoint Server 2010 Service Pack 1
– Word Automation Services on Microsoft SharePoint Server 2010 Service Pack 1
– Excel Services on Microsoft SharePoint Server 2010 Service Pack 2
– Microsoft Business Productivity Servers on Microsoft SharePoint Server 2010 Service Pack 2
– Word Automation Services on Microsoft SharePoint Server 2010 Service Pack 2
– Microsoft Excel Web App 2010 Service Pack 1
– Microsoft Word Web App 2010 Service Pack 1
– Microsoft Excel Web App 2010 Service Pack 2
– Microsoft Word Web App 2010 Service Pack 2
Impact: Remote Code Execution
Version Number: 1.0MS13-068
Affected Software:
– Microsoft Outlook 2007 Service Pack 3
– Microsoft Outlook 2010 Service Pack 1 (32-bit editions)
– Microsoft Outlook 2010 Service Pack 2 (32-bit editions)
– Microsoft Outlook 2010 Service Pack 1 (64-bit editions)
– Microsoft Outlook 2010 Service Pack 2 (64-bit editions)
Impact: Remote Code Execution
Version Number: 1.0MS13-069
Affected Software:
– Windows XP Service Pack 3
— Internet Explorer 6
— Internet Explorer 7
— Internet Explorer 8
– Windows XP Professional x64 Edition Service Pack 2
— Internet Explorer 6
— Internet Explorer 7
— Internet Explorer 8
– Windows Server 2003 Service Pack 2
— Internet Explorer 6
— Internet Explorer 7
— Internet Explorer 8
– Windows Server 2003 x64 Edition Service Pack 2
— Internet Explorer 6
— Internet Explorer 7
— Internet Explorer 8
– Windows Server 2003 with SP2 for Itanium-based Systems
— Internet Explorer 6
— Internet Explorer 7
– Windows Vista Service Pack 2
— Internet Explorer 7
— Internet Explorer 8
— Internet Explorer 9
– Windows Vista x64 Edition Service Pack 2
— Internet Explorer 7
— Internet Explorer 8
— Internet Explorer 9
– Windows Server 2008 for 32-bit Systems Service Pack 2
— Internet Explorer 7
— Internet Explorer 8
— Internet Explorer 9 (Windows Server 2008 Server Core installation not affected)
– Windows Server 2008 for x64-based Systems Service Pack 2
— Internet Explorer 7
— Internet Explorer 8
— Internet Explorer 9 (Windows Server 2008 Server Core installation not affected)
– Windows Server 2008 for Itanium-based Systems Service Pack 2
— Internet Explorer 7
– Windows 7 for 32-bit Systems Service Pack 1
— Internet Explorer 8
— Internet Explorer 9
— Internet Explorer 10
– Windows 7 for x64-based Systems Service Pack 1
— Internet Explorer 8
— Internet Explorer 9
— Internet Explorer 10
– Windows Server 2008 R2 for x64-based Systems Service Pack 1
— Internet Explorer 8
— Internet Explorer 9
— Internet Explorer 10 (Windows Server 2008 R2 Server Core installation not affected)
-Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
— Internet Explorer 8
– Windows 8 for 32-bit Systems
— Internet Explorer 10
– Windows 8 for 64-bit Systems
— Internet Explorer 10
– Windows Server 2012
— Internet Explorer 10 (Windows Server 2012 Server Core installation not affected)
– Windows RT
— Internet Explorer 10
Impact: Remote Code Execution
Version Number: 1.0MS13-070
Affected Software:
– Windows XP Service Pack 3
– Windows XP Professional x64 Edition Service Pack 2
– Windows Server 2003 Service Pack 2
– Windows Server 2003 x64 Edition Service Pack 2
– Windows Server 2003 with SP2 for Itanium-based Systems
Impact: Remote Code Execution
Version Number: 1.0MS13-071
Affected Software:
– Windows XP Service Pack 3
– Windows XP Professional x64 Edition Service Pack 2
– Windows Server 2003 Service Pack 2
– Windows Server 2003 x64 Edition Service Pack 2
– Windows Server 2003 with SP2 for Itanium-based Systems
– Windows Vista Service Pack 2
– Windows Vista x64 Edition Service Pack 2
– Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
– Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected)
– Windows Server 2008 for Itanium-based Systems Service Pack 2
Impact: Remote Code Execution
Version Number: 1.0MS13-072
Affected Software:
– Microsoft Office 2003 Service Pack 3
– Microsoft Word 2003 Service Pack 3
– Microsoft Office 2007 Service Pack 3
– Microsoft Word 2007 Service Pack 3
– Microsoft Word 2010 Service Pack 1 (32-bit editions)
– Microsoft Word 2010 Service Pack 2 (32-bit editions)
– Microsoft Word 2010 Service Pack 1 (64-bit editions)
– Microsoft Word 2010 Service Pack 2 (64-bit editions)
– Microsoft Office Compatibility Pack Service Pack 3
– Microsoft Word Viewer
Impact: Remote Code Execution
Version Number: 1.0MS13-073
Affected Software:
– Microsoft Excel 2003 Service Pack 3
– Microsoft Excel 2007 Service Pack 3
– Microsoft Excel 2010 Service Pack 1 (32-bit editions)
– Microsoft Excel 2010 Service Pack 2 (32-bit editions)
– Microsoft Excel 2010 Service Pack 1 (64-bit editions)
– Microsoft Excel 2010 Service Pack 2 (64-bit editions)
– Microsoft Excel 2013 (32-bit editions)
– Microsoft Excel 2013 (64-bit editions)
– Microsoft Excel 2013 RT
– Microsoft Office for Mac 2011
– Microsoft Office Compatibility Pack Service Pack 3
– Microsoft Excel Viewer
Impact: Remote Code Execution
Version Number: 1.0MS13-074
Affected Software:
– Microsoft Access 2007 Service Pack 3
– Microsoft Access 2010 Service Pack 1 (32-bit editions)
– Microsoft Access 2010 Service Pack 2 (32-bit editions)
– Microsoft Access 2010 Service Pack 1 (64-bit editions)
– Microsoft Access 2010 Service Pack 2 (64-bit editions)
– Microsoft Access 2013 (32-bit editions)
– Microsoft Access 2013 (64-bit editions)
Impact: Remote Code Execution
Version Number: 1.0MS13-075
Affected Software:
– Microsoft Pinyin IME 2010 (32-bit version) on Microsoft Office 2010 Service Pack 1 (32-bit editions)
– Microsoft Pinyin IME 2010 (64-bit version) on Microsoft Office 2010 Service Pack 1 (64-bit editions)
Impact: Elevation of Privilege
Version Number: 1.0MS13-076
Affected Software:
– Windows XP Service Pack 3
– Windows XP Professional x64 Edition Service Pack 2
– Windows Server 2003 Service Pack 2
– Windows Server 2003 x64 Edition Service Pack 2
– Windows Server 2003 with SP2 for Itanium-based Systems
– Windows Vista Service Pack 2
– Windows Vista x64 Edition Service Pack 2
– Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
– Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation affected)
– Windows Server 2008 for Itanium-based Systems Service Pack 2
– Windows 7 for 32-bit Systems Service Pack 1
– Windows 7 for x64-based Systems Service Pack 1
– Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Windows Server 2008 R2 Server Core installation affected)
– Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
– Windows 8 for 32-bit Systems
– Windows 8 for 64-bit Systems
– Windows Server 2012 (Windows Server 2012 Server Core installation affected)
– Windows RT
Impact: Elevation of Privilege
Version Number: 1.0MS13-077
Affected Software:
– Windows 7 for 32-bit Systems Service Pack 1
– Windows 7 for x64-based Systems Service Pack 1
– Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Windows Server 2008 R2 Server Core installation affected)
– Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Impact: Elevation of Privilege
Version Number: 1.0MS13-078
Affected Software:
– Microsoft FrontPage 2003 Service Pack 3
Impact: Information Disclosure
Version Number: 1.0MS13-079
Affected Software:
– Windows Vista Service Pack 2
— Active Directory Lightweight Directory Service (AD LDS)
– Windows Vista x64 Edition Service Pack 2
— Active Directory Lightweight Directory Service (AD LDS)
– Windows Server 2008 for 32-bit Systems Service Pack 2
— Active Directory Services and Active Directory Lightweight Directory Service (AD LDS) (Windows Server 2008 Server Core installation affected)
– Windows Server 2008 for x64-based Systems Service Pack 2
— Active Directory Services and Active Directory Lightweight Directory Service (AD LDS) (Windows Server 2008 Server Core installation affected)
– Windows 7 for 32-bit Systems Service Pack 1
— Active Directory Lightweight Directory Service (AD LDS)
– Windows 7 for x64-based Systems Service Pack 1
— Active Directory Lightweight Directory Service (AD LDS)
– Windows Server 2008 R2 for x64-based Systems Service Pack 1
— Active Directory Services and Active Directory Lightweight Directory Service (AD LDS) (Windows Server 2008 R2 Server Core installation affected)
– Windows 8 for 32-bit Systems
— Active Directory Lightweight Directory Service (AD LDS)
– Windows 8 for 64-bit Systems
— Active Directory Lightweight Directory Service (AD LDS)
– Windows Server 2012
— Active Directory Services and Active Directory Lightweight Directory Service (AD LDS) (Windows Server 2012 Server Core installation affected)
Impact: Denial of Service
Version Number: 1.0