Article ID: 2843162
This update resolves a vulnerability that could allow remote code execution on a client system if a user views shared content that embeds TrueType font files.
Microsoft has released security bulletin MS13-054. To view the complete security bulletin, go to the following Microsoft website:
How to obtain help and support for this security updateHelp installing updates: Support for Microsoft Update
Security solutions for IT professionals: TechNet Security Troubleshooting and Support
Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center
Local support according to your country: International Support
Download informationThis update is available for download from the Microsoft Download Center:
Lync 2010 Attendee (user level install) (32-bit)
Q1: Why is the Lync 2010 Attendee (user level install) update available only from the Microsoft Download Center?
A1: Microsoft is releasing the update for Lync 2010 Attendee (user level install) only through the Microsoft Download Center because the user level installation of Lync 2010 Attendee is handled through a Lync session. Other distribution methods, such as automatic updating, are not appropriate for this kind of installation scenario.
Q2: How do I know whether I have Lync 2010 Attendee (user level install) installed and not Lync 2010 Attendee (admin level install)?
A2: The following registry subkey is present if you have Microsoft Lync 2010 Attendee (user level install) on a computer that is running a 32-bit operating system:
The following registry subkey is present if you have Microsoft Lync 2010 Attendee (admin level install) on a computer that is running a 32-bit operating system:
The following registry subkey is present if you have Microsoft Lync 2010 Attendee (user level install) on a computer that is running a 64-bit operating system:
The following registry subkey is present if you have Microsoft Lync 2010 Attendee (Admin level install) on a computer that is running a 64-bit operating system:
Prerequisites to apply this security updateThere are no prerequisites for installing this security update.
Restart informationYou may have to restart the computer after you install this security update.
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart the computer.
To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install this security update.
See Why you may be prompted to restart your computer after you install a security update on a Windows-based computer
(http://support.microsoft.com/kb/887012/ )for more information.
Removal informationNote We do not recommend that you remove any security update.
To remove this security update, use the Add or Remove Programs item or use the Programs and Features item in Control Panel.
See Information about the ability to uninstall Office updates
(http://support.microsoft.com/kb/903771/ )for more information.
Security update replacement informationThis security update replaces MS13-041: Description of the security update for Lync 2010 Attendee (user level install): May 14, 2013
The English version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
Collapse this imageExpand this image
For all supported x86-based versions of Lync 2010 Attendee (user level install)
Collapse this tableExpand this table
Collapse this imageExpand this image
Applies toThis article applies to the following: