MS12-022: Vulnerability in Expression Design could allow remote code execution: March 13, 2012

INTRODUCTION
Microsoft has released security bulletin MS12-022. To view the complete security bulletin, visit one of the following Microsoft websites: 

How to obtain help and support for this security update

Help protect your PC from viruses and malware:Help installing updates: Security solutions for IT Professionals: Local support by country:

Known issues with this security update

  • If you update Microsoft Expression Design or Expression Design 2 on a system that is running Windows XP, in some cases you may see a Command Prompt window momentarily appear and then disappear. This behavior is expected and does not indicate a problem with the update. 
  • The Microsoft Expression Design update process will fail if the update is applied while Expression Design is running. To address this issue, exit the program and then reapply the update.
  • If you manually update Expression Design instead of using Windows Update, copy the update installer files to a local drive before you install. If you try to install from a network share, latency issues may occur. This can cause the installation to fail. 

Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. 
  • 2675064: MS12-022: Description of the security update for Expression Design: March 13, 2012 
  • 2667724: MS12-022: Description of the security update for Expression Design Service Pack 1: March 13, 2012 
  • 2667725: MS12-022: Description of the security update for Expression Design 2: March 13, 2012 
  • 2667727: MS12-022: Description of the security update for Expression Design 3: March 13, 2012  
  • 2667730: MS12-022: Description of the security update for Expression Design 4: March 13, 2012 
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service dos
Properties

Article ID: 2651018 - Last Review: 03/13/2012 17:04:00 - Revision: 1.0

Microsoft Expression Design, Microsoft Expression Design 2, Microsoft Expression Design 3

  • kbexpertiseinter kbsecurity kbsecbulletin kbsecvulnerability kbqfe kbbug kbfix kbsurveynew KB2651018
Feedback