MS13-067: Vulnerabilities in Microsoft SharePoint Server could allow remote code execution: September 10, 2013

Article translations Article translations
Article ID: 2834052
Expand all | Collapse all

On This Page

Introduction

This security update resolves vulnerabilities in Microsoft Office Server software that could allow remote code execution in the context of the W3WP service account.

Summary

Microsoft has released security bulletin MS13-067. To view the complete security bulletin, go to one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

More information about this security update

Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. These articles may contain known issue information. If this is the case, the known issue is listed below each article link.

SharePoint Server

Note After you install any of the following SharePoint Server security updates, you have to run the PSconfig tool to complete the installation.
  • 2810083 MS13-067: Description of the security update for SharePoint Server 2013 (coreserverloc): September 10, 2013
  • 2817305 MS13-067: Description of the security update for SharePoint Server 2013 (wacserver): September 10, 2013
  • 2817315 MS13-067: Description of the security update for SharePoint Foundation 2013: September 10, 2013
  • 2817393 MS13-067: Description of the security update for SharePoint Server 2010 (coreserver): September 10, 2013
  • 2817372 MS13-067: Description of the security update for SharePoint Server 2010 (wosrv): September 10, 2013
  • 2810067 MS13-067: Description of the security update for SharePoint Foundation 2010: September 10, 2013
SharePoint Services

Note After you install any of the following SharePoint Services security updates, you have to run the PSconfig tool to complete the installation.
  • 2760420 MS13-067: Description of the security update for Windows SharePoint Services 3.0: September 10, 2013
  • 2810061 MS13-067: Description of the security update for Windows SharePoint Services 2.0: September 10, 2013
Office Web Services
  • 2760595 MS13-067: Description of the security update for Excel Services in SharePoint Server 2010: September 10, 2013
  • 2760589 MS13-067: Description of the security update for Excel Services in SharePoint Server 2007: September 10, 2013
  • 2553408 MS13-067: Description of the security update for InfoPath Forms Services in SharePoint 2010: September 10, 2013
  • 2760755 MS13-067: Description of the security update for Word Automation Services in SharePoint Server 2010: September 10, 2013
Office Online
  • 2760594 MS13-067: Description of the security update for Excel Online: September 10, 2013
  • 2817384 MS13-067: Description of the security update for Word Online: September 10, 2013

File hash information

Collapse this imageExpand this image
assets folding start collapsed
Collapse this tableExpand this table
File nameSHA1 hashSHA256 hash
acsrv2010-kb2553298-fullfile-x64-glb.exe122AE7B80155F45F217F366BD2F9D4A99527F14AD62785F2FEDF55057F8512E53FD8EE71B2C3D4CA1E2888C16D95326D19DDEF2B
lpsrv2010-kb2553408-fullfile-x64-glb.exeE586AC1E65F16880847D6E6CCEFF45C3CC082AEB54905C43EC42C9149C0FDB0683D3B4A21BE97EF18DD9B38A83B6171EF9E4463F
pjsrv2010-kb2553430-fullfile-x64-glb.exe8D97F6BABEAD29D1DD7D06AD631BEA5584167FE13FF4F679565F7DF2B6DA0D1503D4324293DE70BEA967FCCCBD59877882CB572F
ppsma2010-kb2553341-fullfile-x64-glb.exeB59A1860FE9AC5499AA5D673AA13B120636BC78D68475D3499CF2109A605185690E052F29810A84A2401C51878B78836735FD362
sts2007-kb2760420-fullfile-x64-glb.exeD04120B3D923E73F4098007966A1C236E6A0217B8CA13F2965FB44C35791857FB300E0C8D4F573BB6518693678A1F2B58849BEE0
sts2007-kb2760420-fullfile-x86-glb.exe6C92539E2E7BDEDFB760DDB69800FCF7E800C908D9F3170B68A1A8A92AACC27C48560CEDE4606997E67BE5149B907F8DBB551DE3
vsrv2010-kb2553219-fullfile-x64-glb.exe06C594E6DABF92474192DC6D971FD1206C49A4EC63A63D9F3746AF081D81B54E4D6B686CCB1CA5AC3F03CAFFD51DF71C681DC401
wdsrv2010-kb2760755-fullfile-x64-glb.exeF55883F6C0D5A5EDD2F04747880159D96A72743F5B4F1B2D87C63D0B9DCB017FF5B09ED309A7C8402AD34694FACEB1F43150E126
xlsrv2010-kb2760595-fullfile-x64-glb.exeB4D49782733AC2158F1C07177DB44320A543AC34CAA100BC32C152A21E0391D3779360E70F8062006C938A7E2D3F51F378C0ECF0
xlwac2010-kb2760594-fullfile-x64-glb.exe722CDD51E9AF23F29372D020938AEFC5DA350096E7116450C7F9304939EFA1F74B9D0E2655243455964478DA485229CD7D55EBF3
Collapse this imageExpand this image
assets folding end collapsed

Applies to

This article applies to the following:
  • Microsoft SharePoint Server 2013
  • Microsoft SharePoint Foundation 2013
  • Microsoft SharePoint Server 2010 Service Pack 2
  • Microsoft SharePoint Server 2010 Service Pack 1
  • Microsoft SharePoint Foundation 2010
  • Microsoft Windows SharePoint Services 3.0
  • Microsoft Windows SharePoint Services 2.0
  • Excel Services in Microsoft SharePoint Server 2010
  • Excel Services in Microsoft Office SharePoint Server 2007
  • InfoPath Forms Services in SharePoint 2010
  • Word Automation Services in SharePoint Server 2010
  • Microsoft Excel Online
  • Microsoft Word Online

Properties

Article ID: 2834052 - Last Review: April 18, 2014 - Revision: 2.2
Keywords: 
kbsecvulnerability kbsecurity kbsecbulletin kbfix kbexpertiseinter kbbug atdownload KB2834052

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com