Qualys Vulnerability R&D Lab has released new vulnerability checks in the Enterprise TruRisk Platform to protect organizations against 47 vulnerabilities that were fixed in 13 bulletins announced today by Microsoft. Customers can immediately audit their networks for these and other new vulnerabilities by accessing their Qualys subscription. Visit Qualys Security Blog to prioritize remediation.
Non-Qualys customers can audit their network for these and other vulnerabilities by signing up for a Qualys Free Trial, or by trying Qualys Community Edition.
Microsoft has released 13 security bulletins to fix newly discovered flaws in their software. Qualys has released the following checks for these new vulnerabilities:
Microsoft Internet Explorer is affected by following vulnerabilities. Multiple memory corruption vulnerabilities that exists in the way that Internet Explorer improperly handles objects in memory. An attacker could host a specially crafted website designed to exploit these vulnerabilities through Internet Explorer and then convince a user to view the website.
This security update is rated Critical for Internet Explorer 6, 7, 8, 9 and 10 on Windows clients and Moderate for Internet Explorer 6, 7, 8, 9 and 10 on Windows servers.
Windows XP Service Pack 3 (Internet Explorer 6)
Windows XP Professional x64 Edition Service Pack 2 (Internet Explorer 6)
Windows Server 2003 Service Pack 2 (Internet Explorer 6)
Windows Server 2003 x64 Edition Service Pack 2 (Internet Explorer 6)
Windows Server 2003 with SP2 for Itanium-based Systems (Internet Explorer 6)
Windows XP Service Pack 3 (Internet Explorer 7)
Windows XP Professional x64 Edition Service Pack 2 (Internet Explorer 7)
Windows Server 2003 Service Pack 2 (Internet Explorer 7)
Windows Server 2003 x64 Edition Service Pack 2 (Internet Explorer 7)
Windows Server 2003 with SP2 for Itanium-based Systems (Internet Explorer 7)
Windows Vista Service Pack 2 (Internet Explorer 7)
Windows Vista x64 Edition Service Pack 2 (Internet Explorer 7)
Windows Server 2008 for 32-bit Systems Service Pack 2 (Internet Explorer 7)
Windows Server 2008 for x64-based Systems Service Pack 2 (Internet Explorer 7)
Windows Server 2008 for Itanium-based Systems Service Pack 2 (Internet Explorer 7)
For a complete list of patch download links, please refer to Microsoft Security Bulletin MS13-069.
Workaround:
1. Set Internet and Local intranet security zone settings to "High" to block ActiveX Controls and Active Scripting in these zones
2. Configure Internet Explorer to prompt before running Active Scripting or to disable Active Scripting in the Internet and Local intranet security zone
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS13-069 Windows 7 for 32-bit Systems Service Pack 1(Internet Explorer 10)
MS13-069 Windows 7 for 32-bit Systems Service Pack 1(Internet Explorer 8)
MS13-069 Windows 7 for 32-bit Systems Service Pack 1(Internet Explorer 9)
MS13-069 Windows 7 for x64-based Systems Service Pack 1(Internet Explorer 10)
MS13-069 Windows 7 for x64-based Systems Service Pack 1(Internet Explorer 8)
MS13-069 Windows 7 for x64-based Systems Service Pack 1(Internet Explorer 9)
MS13-069 Windows 8 for 32-bit Systems(Internet Explorer 10)
MS13-069 Windows 8 for 64-bit Systems(Internet Explorer 10)
MS13-069 Windows Server 2003 Service Pack 2(Internet Explorer 6)
MS13-069 Windows Server 2003 Service Pack 2(Internet Explorer 7)
MS13-069 Windows Server 2003 Service Pack 2(Internet Explorer 8)
MS13-069 Windows Server 2003 with SP2 for Itanium-based Systems(Internet Explorer 6)
MS13-069 Windows Server 2003 with SP2 for Itanium-based Systems(Internet Explorer 7)
MS13-069 Windows Server 2003 x64 Edition Service Pack 2(Internet Explorer 6)
MS13-069 Windows Server 2003 x64 Edition Service Pack 2(Internet Explorer 7)
MS13-069 Windows Server 2003 x64 Edition Service Pack 2(Internet Explorer 8)
MS13-069 Windows Server 2008 R2 for Itanium-based Systems Service Pack 1(Internet Explorer 8)
MS13-069 Windows Server 2008 R2 for x64-based Systems Service Pack 1(Internet Explorer 10)
MS13-069 Windows Server 2008 R2 for x64-based Systems Service Pack 1(Internet Explorer 8)
MS13-069 Windows Server 2008 R2 for x64-based Systems Service Pack 1(Internet Explorer 9)
MS13-069 Windows Server 2008 for 32-bit Systems Service Pack 2(Internet Explorer 7)
MS13-069 Windows Server 2008 for 32-bit Systems Service Pack 2(Internet Explorer 8)
MS13-069 Windows Server 2008 for 32-bit Systems Service Pack 2(Internet Explorer 9)
MS13-069 Windows Server 2008 for Itanium-based Systems Service Pack 2(Internet Explorer 7)
MS13-069 Windows Server 2008 for x64-based Systems Service Pack 2(Internet Explorer 7)
MS13-069 Windows Server 2008 for x64-based Systems Service Pack 2(Internet Explorer 8)
MS13-069 Windows Server 2008 for x64-based Systems Service Pack 2(Internet Explorer 9)
MS13-069 Windows Server 2012(Internet Explorer 10)
MS13-069 Windows Vista Service Pack 2(Internet Explorer 7)
MS13-069 Windows Vista Service Pack 2(Internet Explorer 8)
MS13-069 Windows Vista Service Pack 2(Internet Explorer 9)
MS13-069 Windows Vista x64 Edition Service Pack 2(Internet Explorer 7)
MS13-069 Windows Vista x64 Edition Service Pack 2(Internet Explorer 8)
MS13-069 Windows Vista x64 Edition Service Pack 2(Internet Explorer 9)
MS13-069 Windows XP Professional x64 Edition Service Pack 2(Internet Explorer 6)
MS13-069 Windows XP Professional x64 Edition Service Pack 2(Internet Explorer 7)
MS13-069 Windows XP Professional x64 Edition Service Pack 2(Internet Explorer 8)
MS13-069 Windows XP Service Pack 3(Internet Explorer 6)
MS13-069 Windows XP Service Pack 3(Internet Explorer 7)
MS13-069 Windows XP Service Pack 3(Internet Explorer 8)
Microsoft has released a security update that addresses the vulnerabilities by enabling machine authentication check (MAC) according to best practices, correcting how SharePoint Server sanitizes requests, correcting how SharePoint Server verifies and handles undefined workflows, and correcting how Microsoft Office Services and Web Apps parse specially crafted files.
This security update is rated Critical for supported editions of Microsoft SharePoint Server 2007, Microsoft SharePoint Server 2010, Microsoft SharePoint Services 2.0, Microsoft SharePoint Services 3.0, and Microsoft SharePoint Foundation 2010. This security update is also rated Critical for affected Microsoft Office Services and Web Apps on supported editions of Microsoft SharePoint Server 2010. In addition, this security update is rated Important for Microsoft SharePoint Server 2013, Microsoft SharePoint Foundation 2013, and Excel Services on Microsoft SharePoint Server 2007.
Microsoft SharePoint Portal Server 2003 Service Pack 3 (Microsoft Windows SharePoint Services 2.0)
Microsoft SharePoint Server 2013 (Microsoft SharePoint Foundation 2013)
For a complete list of patch download links, please refer to Microsoft Security Bulletin MS13-067.
Workaround:
Microsoft Office Memory Corruption Vulnerability:
Do not open Office files that you receive from untrusted sources or that you receive unexpectedly from trusted sources.
MAC Disabled Vulnerability:
Enable viewstate MAC on sites where it is not already enabled.
Multiple Memory Corruption Vulnerabilities in Word:
Do not open Office files that you receive from untrusted sources or that you receive unexpectedly from trusted sources
Affected Software:
Microsoft Outlook 2007 Service Pack 3
Microsoft Outlook 2010 Service Pack 1
Microsoft Outlook 2010 Service Pack 2
This security update is rated Critical for all supported releases of Microsoft Windows.
Microsoft Office 2007 Service Pack 3 (Microsoft Outlook 2007 Service Pack 3)
Refer to Microsoft Security Bulletin MS13-068 for further details.
This security update is rated Critical for all supported editions of Windows XP and Windows Server 2003.
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS13-070 Windows Server 2003 Service Pack 2
MS13-070 Windows Server 2003 with SP2 for Itanium-based Systems
MS13-070 Windows Server 2003 x64 Edition Service Pack 2
MS13-070 Windows XP Professional x64 Edition Service Pack 2
MS13-070 Windows XP Service Pack 3
The vulnerability exists because Microsoft Windows improperly handles certain theme and screensaver files.
This security update is rated Important for all supported editions of Windows XP and Windows Server 2003.
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista x64 Edition Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for Itanium-based Systems Service Pack 2
Refer to Microsoft Security Bulletin MS13-071 for further details.
Affected Software:
Microsoft Office 2003 Service Pack 3
Microsoft Word 2003 Service Pack 3
Microsoft Office 2007 Service Pack 3
Microsoft Word 2007 Service Pack 3
Microsoft Word 2010 Service Pack 1
Microsoft Word 2010 Service Pack 2
Microsoft Office Compatibility Pack Service Pack 3
Microsoft Word Viewer
This security update is rated Important for all supported releases of Microsoft Windows.
Microsoft Office 2003 Service Pack 3
Microsoft Office 2003 Service Pack 3 (Microsoft Word 2003 Service Pack 3)
Microsoft Office 2007 Service Pack 3
Microsoft Office 2007 Service Pack 3
Microsoft Office 2007 Service Pack 3 (Microsoft Word 2007 Service Pack 3)
Microsoft Office Compatibility Pack Service Pack 3
Refer to Microsoft Security Bulletin MS13-072 for further details.
Excel is prone to multiple remote code execution vulnerabilities that exist in the way that Microsoft Excel handles specially crafted Excel files.
Microsoft has released a security update that addresses the vulnerabilities by correcting how Microsoft Excel parses and validates data when opening specially crafted Excel files.
This security update is rated Important for all supported editions of Microsoft Excel 2003, Microsoft Excel 2007, Microsoft Excel 2010, Microsoft Excel 2013, Microsoft Excel 2013 RT, and Microsoft Office for Mac 2011; it is also rated Important for supported versions of Microsoft Excel Viewer and Microsoft Office Compatibility Pack.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
The vulnerabilities exists because of improper handling of memory by Microsoft Access, when opening specially crafted Access files. The vulnerabilities are:
- CVE-2013-3155 - Access Memory Corruption Vulnerability
- CVE-2013-3156 - Access File Format Memory Corruption Vulnerability
- CVE-2013-3157 - Access Memory Corruption Vulnerability
This security update is rated Important for supported editions of Microsoft Access 2007, Microsoft Access 2010, and Microsoft Access 2013.
Microsoft Security Bulletin MS13-074
The security update addresses the vulnerability by correcting the manner in which the Microsoft Office IME (Chinese) exposes configuration options not designed to run on the secure desktop.
This security update is rated Important for all supported editions of Microsoft Office 2010 where Microsoft Pinyin IME 2010 is installed.
Microsoft Office 2010 Service Pack 1 (32-bit editions) (Microsoft Pinyin IME 2010 (32-bit version))
Microsoft Office 2010 Service Pack 1 (64-bit editions) (Microsoft Pinyin IME 2010 (64-bit version))
Refer to Microsoft Security Bulletin MS13-075 for further details.
The kernel is prone to the following vulnerabilities:
- An elevation of privilege vulnerability exists when the Windows kernel-mode driver improperly handles objects in memory. (CVE-2013-1300, CVE-2013-1345, CVE-2013-3173)
- An elevation of privilege vulnerability exists in the way that the Windows kernel-mode driver improperly handles objects in memory. (CVE-2013-3866)
Microsoft has released a security update that addresses the vulnerabilities by correcting the way the Windows kernel-mode drivers handle objects in memory.
This security update is rated Important for all supported releases of Microsoft Windows.
Successful exploitation of these vulnerabilities could allow a local attacker to execute arbitrary code with elevated privileges.
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista x64 Edition Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for Itanium-based Systems Service Pack 2
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 R2 for x64-based Systems Service Pack 1
For a complete list of patch download links, please refer to Microsoft Security Bulletin MS13-076.
An elevation of privilege vulnerability exists when the Windows Service Control Manager improperly handles objects in memory. (CVE-2013-3862)
This security update is rated Important.
Affected Software:
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Refer to Microsoft Security Bulletin MS13-077 for further details.
Workaround:
Microsoft has not identified any workarounds for this vulnerability.
The security update addresses the vulnerability by ensuring that FrontPage properly handles Document Type Definition (DTD) entities.
DTD, standing for document type definition, is a file format type that is used in XML and other markup languages to identify the markup to be used to format a document.
Affected Software:
Microsoft FrontPage 2003 Service Pack 3
Microsoft FrontPage 2003 Service Pack 3
Refer to Microsoft Security Bulletin MS13-078 for further details.
This security update is rated Important for Active Directory Lightweight Directory Service (AD LDS) and Active Directory Services where affected on Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, and Windows Server 2012.
Patches:
The following are links for downloading patches to fix these vulnerabilities:
MS13-079 Windows 7 for 32-bit Systems Service Pack 1(Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows 7 for x64-based Systems Service Pack 1(Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows 8 for 32-bit Systems(Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows 8 for 64-bit Systems(Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Server 2008 R2 for x64-based Systems Service Pack 1(Active Directory Services and Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)(Active Directory Services and Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Server 2008 for 32-bit Systems Service Pack 2(Active Directory Services and Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)(Active Directory Services and Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Server 2008 for x64-based Systems Service Pack 2(Active Directory Services and Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)(Active Directory Services and Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Server 2012(Active Directory Services and Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Server 2012 (Server Core installation)(Active Directory Services and Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Vista Service Pack 2(Active Directory Lightweight Directory Service (AD LDS))
MS13-079 Windows Vista x64 Edition Service Pack 2(Active Directory Lightweight Directory Service (AD LDS))
These new vulnerability checks are included in Qualys vulnerability signature 2.2.528-4. Each Qualys account is automatically updated with the latest vulnerability signatures as they become available. To view the vulnerability signature version in your account, from the Qualys Help menu, select the About tab.
To perform a selective vulnerability scan, configure a scan profile to use the following options:
In addition, prior to running a scan for these new vulnerabilities, you can estimate your exposure to these new threats by running the Risk Analysis Report, available from the Qualys Vulnerability Management Reports tab.
Platforms and Platform Identification
For more information, customers may contact Qualys Technical Support.
The Enterprise TruRisk Platform and its integrated suite of security and compliance applications provides organizations of all sizes with a global view of their security and compliance solutions, while drastically reducing their total cost of ownership. Qualys solutions include: continuous monitoring, vulnerability management, policy compliance, PCI compliance, security assessment questionnaire, web application scanning, web application firewall, malware detection and SECURE Seal for security testing of web sites.