The Hacker News Logo
Subscribe to Newsletter

Microsoft Patch Tuesday to Fix Three Critical Remote Code Execution vulnerabilities

Yeah, it’s Patch Tuesday once again. Almost 10 years ago in October, 2003 - Microsoft invented the process of regularly scheduled security updates on every second Tuesday of the Month, as Patch Tuesday.
Today, the Microsoft Security team will issue eight security updates in total, out of that -- three of which are designated as "critical," and rest five as "Important" updates, that patches vulnerabilities in Microsoft Windows, Microsoft Server Software, and Internet Explorer.

The eight bulletins that Microsoft is releasing fixes a total of 23 different vulnerabilities in Microsoft products. Microsoft will be rolling out a total of three Critical patches dealing with Remote Code Execution.

Windows 8 is expected to get four of the updates, one of them is critical and dealing with Remote Code Execution with Internet Explorer 10, while the other three updates are Important and deal with Elevation of Privilege and Denial of Service. Windows RT is expected to receive one Critical update affecting Internet Explorer 10 and two Important updates.

Security Bulletins
  • MS13-059 Cumulative Security Update for Internet Explorer (2862772)
  • MS13-060 Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2850869)
  • MS13-061 Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2876063)
  • MS13-062 Vulnerability in Remote Procedure Call Could Allow Elevation of Privilege (2849470)
  • MS13-063 Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2859537)
  • MS13-064 Vulnerability in Windows NAT Driver Could Allow Denial of Service (2849568)
  • MS13-065 Vulnerability in ICMPv6 could allow Denial of Service (2868623)
  • MS13-066 Vulnerability in Active Directory Federation Services Could Allow Information Disclosure (2873872)
Updates to Internet Explorer are typically considered the most important ones for users to jump on quickly, because they typically offer hackers the path of least resistance.

As part of today's August 2013 Patch Tuesday, Microsoft has also rolled out a firmware update for the Surface RT and Surface Pro.

You can download all patches from Microsoft’s Download Center either individually, or as a monthly ISO image.

Have something to say about this article? Comment below or share it with us on Facebook, Twitter or our LinkedIn Group.
SHARE
Comments
Latest Stories
Best Deals

Newsletter — Subscribe for Free

Join over 500,000 information security professionals — Get the best of our cyber security coverage delivered to your inbox every morning.