Introduction

This update resolves a security vulnerability in Microsoft Outlook that could allow information disclosure when a specially crafted email message is opened or previewed.

Summary

Microsoft has released security bulletin MS13-094. To view the complete security bulletin, go to one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft UpdateSecurity solutions for IT professionals: TechNet Security Troubleshooting and SupportHelp protect your computer that is running Windows from viruses and malware: Virus Solution and Security CenterLocal support according to your country: International Support

More information about this security update

Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link.

  • 2837618 MS13-094: Description of the security update for Outlook 2013: November 12, 2013The following is the known issue in security update 2837618. For more information about this known issue, see security update 2837618.

    • After this update is applied, you may experience issues with S/MIME certificate verification in Microsoft Outlook.

  • 2837597 MS13-094: Description of the security update for Outlook 2010: November 12, 2013The following is the known issue in security update 2837597. For more information about this known issue, see security update 2837597.

    • After this update is applied, you may experience issues with S/MIME certificate verification in Microsoft Outlook.

  • 2825644 MS13-094: Description of the security update for Outlook 2007: November 12, 2013The following is the known issue in security update 2825644. For more information about this known issue, see security update 2825644.

    • After this update is applied, you may experience issues with S/MIME certificate verification in Microsoft Outlook.

File name

SHA1 hash

SHA256 hash

outlook2007-kb2825644-fullfile-x86-glb.exe

0400E63123F0412E3929B9F1153E1682495DB20D

233239CAE730AF533774B0E733C6B36AB90F0D9592A5608C965E950169A65882

outlook2010-kb2837597-fullfile-x64-glb.exe

4DD5ED07F45B99014FBF136056FC5AE2564E7B44

A3A0BCDDB52F262F7CF7822920B6129AE467F7C19B776C8E9A1CBB856E7A6EBF

outlook2010-kb2837597-fullfile-x86-glb.exe

536F49186AAA11A3DEA8848A148A86F8DFD37FB5

0289BCA7BAA085426C6E8CA22794F8181CB57EAAED85242558FA41A5480048BA

outlookloc.exe

0AF707951C2CE8D8782F441FCBED1A40D1C990D6

E849404C4A99D8284010DB88E106F455BA077813DDE1E385116BA1B5A59E860A

outlookloc64.exe

688A77D5DEC0A50797B104E2F406DDBB31F74D9D

70DC548BD881CF239FC9D370FB7E58C2B87E603154B8AF96BC5B0CFC2B4BF4FE

Facebook LinkedIn Email

Need more help?

Want more options?

Discover Community

Explore subscription benefits, browse training courses, learn how to secure your device, and more.

Microsoft 365 subscription benefits

Microsoft 365 training

Microsoft security

Accessibility center

Communities help you ask and answer questions, give feedback, and hear from experts with rich knowledge.

Ask the Microsoft Community

Microsoft Tech Community

Windows Insiders

Microsoft 365 Insiders