MS12-022: Vulnerability in Expression Design could allow remote code execution: March 13, 2012
Microsoft has released security bulletin MS12-022. To view the complete security bulletin, visit one of the following Microsoft websites:
- Home users:Skip the details: Download the updates for your home computer or laptop from the Microsoft Update website now:
- IT professionals:
How to obtain help and support for this security updateHelp protect your PC from viruses and malware:
Known issues with this security update
- If you update Microsoft Expression Design or Expression Design 2 on a system that is running Windows XP, in some cases you may see a Command Prompt window momentarily appear and then disappear. This behavior is expected and does not indicate a problem with the update.
- The Microsoft Expression Design update process will fail if the update is applied while Expression Design is running. To address this issue, exit the program and then reapply the update.
- If you manually update Expression Design instead of using Windows Update, copy the update installer files to a local drive before you install. If you try to install from a network share, latency issues may occur. This can cause the installation to fail.
Known issues and additional information about this security updateThe following articles contain additional information about this security update as it relates to individual product versions.
- 2675064: MS12-022: Description of the security update for Expression Design: March 13, 2012
- 2667724: MS12-022: Description of the security update for Expression Design Service Pack 1: March 13, 2012
- 2667725: MS12-022: Description of the security update for Expression Design 2: March 13, 2012
- 2667727: MS12-022: Description of the security update for Expression Design 3: March 13, 2012
- 2667730: MS12-022: Description of the security update for Expression Design 4: March 13, 2012
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service dos
Article ID: 2651018 - Last Review: 03/13/2012 17:04:00 - Revision: 1.0
Microsoft Expression Design, Microsoft Expression Design 2, Microsoft Expression Design 3
- kbexpertiseinter kbsecurity kbsecbulletin kbsecvulnerability kbqfe kbbug kbfix kbsurveynew KB2651018