Microsoft hat im Laufe des heutigen Abends elf Security Bulletins im Rahmen des Patchday für Dezember 2013 veröffentlicht, von denen fünf als „kritisch“ und sechs als „wichtig“ eingestuft werden. Die kritischen Security Bulletins beheben Schwachstellen in Windows, Office, Internet Explorer, Lync und Exchange. Die wichtigen Security Bulletins beheben Schwachstellen in Windows, Office, Server Software und Developer Tools. Benutzer, die die automatische Aktualisierung von Windows aktiviert haben, müssen nichts tun, da alle Sicherheitsupdates automatisch geladen und installiert werden. Benutzer, die die automatische Aktualisierung nicht aktiviert haben, müssen auf Updates prüfen und diese Updates manuell installieren.
Download -> Microsoft Sicherheitsupdates für Dezember 2013
- MS13-096 – Vulnerability in Graphics Component Could allow Remote Code Execution
This security update resolves a vulnerability in Microsoft Windows, Microsoft Office, and Lync. - MS13-097 – Cumulative Security Update for Internet Explorer
This security update resolves seven vulnerabilities in Internet Explorer. - MS13-098 – Vulnerability in Windows Could Allow Remote Code Execution
This security update resolves a vulnerability in Microsoft Windows. - MS13-099 – Vulnerability in Scripting Runtime Object Library Could Allow Remote Code Execution
This security update resolves a vulnerability in Microsoft Windows. - MS13-105 – Vulnerabilities in Exchange Server Could Allow Remote Code Execution
This security update resolves four vulnerabilities in Microsoft Exchange Server. - MS13-100 – Vulnerabilities in SharePoint Server Could Allow Remote Code Execution
This security update resolves multiple vulnerabilities in Microsoft Office server software. - MS13-101 – Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege
This security update resolves five vulnerabilities in Microsoft Windows. - MS13-102 – Vulnerability in LRPC Client Could Allow Elevation of Privilege
This security update resolves a vulnerability in Microsoft Windows. - MS13-103 – Vulnerability in ASP.NET SignalR Could Allow Elevation of Privilege
This security update resolves a vulnerability in ASP.NET SignalR. - MS13-104 – Vulnerability in Office Could Allow Information Disclosure
This security update resolves one vulnerability in Microsoft Office that could allow information disclosure if a user attempts to open an Office file hosted on a malicious website. - MS13-106 – Vulnerability in a Office Shared Component Could Allow Security Feature Bypass
This security update resolves one vulnerability in a shared component that is currently being exploited.
Microsoft Patchday für Dezember 2013 -> Weitere Infos
- Microsoft Security Bulletin Summary für Dezember 2013
In diesem Bulletin Summary sind die veröffentlichten Security Bulletins aufgeführt.
http://technet.microsoft.com/de-de/security/bulletin/ms13-dec
Microsoft empfiehlt Benutzern, ihre Software auf die neueste Version zu aktualisieren.