-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Reference: CERT-EU Security Advisory 2013-0003 Title: Microsoft Security Updates - Advance Notification Version history: 04.01.2013 Initial publication CERT-EU has received advance notification from Microsoft on a number of new security updates which are planned for release on January 08, 2013. This advisory is intended to help you plan for the deployment of these security updates more effectively. Please note that the list of affected software shown below is an abstract. The January 2013 Advance Notification Summary page is now live at http://technet.microsoft.com/security/bulletin/ms13-jan. Microsoft's security content posted to the web is occasionally updated to reflect late-breaking information. If this results in an inconsistency between the information here and the information in Microsoft's web-based security content, the information in Microsoft's web-based security content is authoritative. ================================== NEW BULLETIN SUMMARY ================================== Bulletin ID: Bulletin 1 Maximum Severity Rating: Critical Vulnerability Impact: Remote Code Execution Restart Requirement: Requires restart Affected Software: Windows 7 and Windows Server 2008 R2. - ---------------------------- Bulletin ID: Bulletin 2 Maximum Severity Rating: Critical Vulnerability Impact: Remote Code Execution Restart Requirement: May require restart Affected Software: Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, Windows RT, Office 2003, Office 2007, Word Viewer, Office Compatibility Pack, Expression Web and Expression Web 2, Office SharePoint Server 2007 and Groove Server 2007. - ---------------------------- Bulletin ID: Bulletin 3 Maximum Severity Rating: Important Vulnerability Impact: Elevation of Privilege Restart Requirement: Does not require restart Affected Software: System Center Operations Manager 2007 - ---------------------------- Bulletin ID: Bulletin 4 Maximum Severity Rating: Important Vulnerability Impact: Elevation of Privilege Restart Requirement: May require restart Affected Software: .NET Framework on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, and Windows RT. - ---------------------------- Bulletin ID: Bulletin 5 Maximum Severity Rating: Important Vulnerability Impact: Elevation of Privilege Restart Requirement: Requires restart Affected Software: Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, and Windows RT. - ---------------------------- Bulletin ID: Bulletin 6 Maximum Severity Rating: Important Vulnerability Impact: Security Feature Bypass Restart Requirement: Requires restart Affected Software: Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, and Windows RT. - ---------------------------- Bulletin ID: Bulletin 7 Maximum Severity Rating: Important Vulnerability Impact: Vulnerability Impact: Denial of Service Restart Requirement: May require restart Affected Software: .NET Framework on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, and Windows Server 2012. Although changes are not anticipated, the number of bulletins, products affected, restart information, and severities are subject to change until released. Best regards, CERT-EU Team (http://cert.europa.eu) Phone: +32.2.2990005 / e-mail: cert-eu@ec.europa.eu PGP KeyID 0x46AC4383 FP: 9011 6BE9 D642 DD93 8348 DAFA 27A4 06CA 46AC 4383 Privacy Statement: http://cert.europa.eu/cert/plainedition/en/cert_privacy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBAgAGBQJQ5sV2AAoJEPpzpNLI8SVoHbIP/19+PkIINJvW7aklt+SWb4JS qKP6Ky1MNrdHJGw78ZmoVEuNyfAwNvxmmSj2US41q2G7Yfnl8n3r+CMMBi/dB9HS TK2ifPcbD7T2vf90iqg3qhzsEr0aZdAwhXv564Xbg8Af7fpzk+tBWyR/UX8lqlUj L9NPrhIRonqcZvMIsh8yIqKuhhAk9JjIMBRlrjADGnko8IBWwfLBrywdlLt/3kDo Ual5usNjmwzQalrzVgRvuc3q8fNrl2B2G8X6Vs18IlqOLuWmRHivWFr3ikSrFXxN kAIX1ZQCog60epheH7LzsRF/ikOo/HbvOqffllniEYsTPluCD5e095zsQ+BGHq3a PwCBKXUpvOU75Y3z3Ey4ko5+orfrDue4ruiXQbUrb0kK57pJS8M3AjVahIPCGgur TLBmhCkJljSek7vCdilamzTSuy3trraHQWFnZ65PE/8NiQOpoaGO9dFMU3lMqkAj zRqP012Gke5hRCQPDM9Avd8kiiHzz2xfIiEbALHme/DCXZXT40S0bSHd6+Z4Mm/U n8yL32m8KETaLj+x8KlzfBJ6jWuYqA7xT6hHlSrW1WAQ9V653nA/iEPrk4uX34Jm mCo0QtEvwQ7Bid0B1Y2jqPjcA7yKeI23ICwWM4Dh7Vt04VBNTvbv87e4hdgpXOZ6 yikGFl3mtN7kFQ1TDhso =eVw5 -----END PGP SIGNATURE-----