October 2013 Patch Recommendations

8 Security Bulletins were released – 4 Critical, 4 Important, and 0 Moderate

This Month In Brief

We have not uncovered any widespread problems with any of these patches and are releasing all of them.

MS13-080 is the top priority this month. It is a cumulative security update for Internet Explorer. It includes patches for two separate vulnerabilities that are currently being exploited in the wild. Many feel Microsoft should have released this as an out-of-band patch weeks ago. After your next patch cycle completes you should follow up and make sure this is installed.

Also take note of the “Known Issues” for MS13-081 (https://support.microsoft.com/kb/2870008). In particular “KB2884256 – USB devices may stop working.” and “KB2868038 – your audio playback device may be reset to use the system speaker.” This is a good reminder that your support staff should always be aware of the Patch Tuesday cycle and suspect patches first when troubleshooting “oddball” problems this time of the month.

No out-of-band updates were released during the last month.

Worth mentioning: This month marks the 10th anniversary of Patch Tuesday.

Exploitability

Requires Restart

  • Servers: Yes
  • Workstations: Yes

New Security Bulletins

(MS#/Affected Software/Type)

CRITICAL

MS13-080 Cumulative Security Update for Internet Explorer (2879017) (Internet Explorer) The most severe vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer.
Details
KB in Kaseya: KB2879017
Affected Software: XP, Vista, Windows 7/8, Server 2003, Server 2008/2008R2/2012, Windows RT
Known Issues per MS:
MS13-081 Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2870008) (Kernel-Mode Drivers) The most severe of these vulnerabilities could allow remote code execution if a user views shared content that embeds OpenType or TrueType font files.
Details
KB in Kaseya: KB2847311, KB2855844, KB2862330, KB2862335, KB2863725, KB2864202, KB2868038, KB2876284, KB2883150, KB2884256
Affected Software: XP, Vista, Windows 7/8, Server 2003, Server 2008/2008R2/2012, Windows RT
Known Issues per MS: https://support.microsoft.com/kb/2870008
MS13-082 Vulnerabilities in .NET Framework Could Allow Remote Code Execution (2878890) (.NET Framework) The most severe of the vulnerabilities could allow remote code execution if a user visits a website containing a specially crafted OpenType font (OTF) file using a browser capable of instantiating XBAP applications.
Details
KB in Kaseya: KB2858302, KB2861188, KB2861189, KB2861190, KB2861191, KB2861193, KB2861194, KB2861208, KB2861697, KB2861698, KB2861702, KB2861704, KB2863239, KB2863240, KB2863243, KB2863253
Affected Software: XP, Vista, Windows 7/8, Server 2003, Server 2008/2008R2/2012, Windows RT
Known Issues per MS:
MS13-083 Vulnerability in Windows Common Control Library Could Allow Remote Code Execution (2864058) (Windows Common Control Library) The vulnerability could allow remote code execution if an attacker sends a specially crafted web request to an ASP.NET web application running on an affected system.
Details
KB in Kaseya: KB2864058
Affected Software: Vista, Windows 7/8, Server 2003, Server 2008/2008R2/2012, Windows RT
Known Issues per MS:

IMPORTANT

MS13-084 Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2885089) (SharePoint Server) The most severe vulnerability could allow remote code execution if a user opens a specially crafted Office file in an affected version of Microsoft SharePoint Server, Microsoft Office Services, or Web Apps.
Details
KB in Kaseya: KB2596741, KB2752002, KB2760561, KB2826022, KB2826028, KB2826029, KB2826030, KB2826036, KB2827222, KB2827327
Affected Software: SharePoint Server 2007/2010/2013, Web Apps
Known Issues per MS:
MS13-085 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2885080) (Excel) The vulnerabilities could allow remote code execution if a user opens a specially crafted Office file with an affected version of Microsoft Excel or other affected Microsoft Office software.
Details
KB in Kaseya: KB2760585, KB2760591, KB2817623, KB2826023, KB2826033, KB2826035, KB2827324, KB2827326, KB2827238, KB2889496
Affected Software: Office 2007/2010/2013, Excel Viewer, Office Compatibility Pack, Office 2011 for MAC, Office 2013 RT
Known Issues per MS:
MS13-086 Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2885084) (Word) The vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected version of Microsoft Word or other affected Microsoft Office software.
Details
KB in Kaseya: KB2826020, KB2827329, KB2827330
Affected Software: Office 2003/2007, Office Compatibility Pack
Known Issues per MS:
MS13-087 Vulnerability in Silverlight Could Allow Information Disclosure (2890788) (Silverlight) The vulnerability could allow information disclosure if an attacker hosts a website that contains a specially crafted Silverlight application that is designed to exploit this vulnerability and then convinces a user to view the website.
Details
KB in Kaseya: KB2890788
Affected Software: Silverlight 5
Known Issues per MS: