MS13-094: Vulnerability in Outlook could allow information disclosure: November 12, 2013

Introduction

This update resolves a security vulnerability in Microsoft Outlook that could allow information disclosure when a specially crafted email message is opened or previewed.

Summary

Microsoft has released security bulletin MS13-094. To view the complete security bulletin, go to one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

More information about this security update

Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link.

  • 2837618 MS13-094: Description of the security update for Outlook 2013: November 12, 2013

    The following is the known issue in security update 2837618 . For more information about this known issue, see security update 2837618 .

    • After this update is applied, you may experience issues with S/MIME certificate verification in Microsoft Outlook.
  • 2837597 MS13-094: Description of the security update for Outlook 2010: November 12, 2013

    The following is the known issue in security update 2837597 . For more information about this known issue, see security update 2837597 .

    • After this update is applied, you may experience issues with S/MIME certificate verification in Microsoft Outlook.
  • 2825644 MS13-094: Description of the security update for Outlook 2007: November 12, 2013

    The following is the known issue in security update 2825644 . For more information about this known issue, see security update 2825644 .

    • After this update is applied, you may experience issues with S/MIME certificate verification in Microsoft Outlook.

File hash information

File name SHA1 hash SHA256 hash
outlook2007-kb2825644-fullfile-x86-glb.exe 0400E63123F0412E3929B9F1153E1682495DB20D 233239CAE730AF533774B0E733C6B36AB90F0D9592A5608C965E950169A65882
outlook2010-kb2837597-fullfile-x64-glb.exe 4DD5ED07F45B99014FBF136056FC5AE2564E7B44 A3A0BCDDB52F262F7CF7822920B6129AE467F7C19B776C8E9A1CBB856E7A6EBF
outlook2010-kb2837597-fullfile-x86-glb.exe 536F49186AAA11A3DEA8848A148A86F8DFD37FB5 0289BCA7BAA085426C6E8CA22794F8181CB57EAAED85242558FA41A5480048BA
outlookloc.exe 0AF707951C2CE8D8782F441FCBED1A40D1C990D6 E849404C4A99D8284010DB88E106F455BA077813DDE1E385116BA1B5A59E860A
outlookloc64.exe 688A77D5DEC0A50797B104E2F406DDBB31F74D9D 70DC548BD881CF239FC9D370FB7E58C2B87E603154B8AF96BC5B0CFC2B4BF4FE