Microsoft Patch Tuesday December 2013

Microsoft has announced this month’s Patch Tuesday release.  There are 11 total patches – 5 Critical and 6 Important – expected to be released on Tuesday, December 10. Here is the breakdown for this month:

Security Bulletins:

  • Five bulletins are rated as Critical.
  • Six bulletins are rated as Important.

Vulnerability Impact:

  • Six bulletins address vulnerabilities that could allow Remote Code Execution.
  • One bulletin addresses a vulnerability that could lead to Information Disclosure.
  • Three bulletins address vulnerability that could allow Elevation of Privileges.
  • One bulletin addresses a vulnerability which could lead to a Security Feature Bypass.

Affected Products:

  • All supported Windows operating systems
  • All versions of Office
  • Office Web Apps 2013
  • Lync 2010 and 2013
  • SharePoint Server 2010 and 2013
  • Exchange Server 2007, 2010, and 2013
  • ASP.NET SignalR
  • Visual Studio Team Foundation Server

Affected Software.

Bulletin ID Maximum Severity Rating and Vulnerability Impact Restart Requirement Affected Software
Bulletin 1 Critical 
Remote Code Execution
Requires restart Microsoft Windows,
Microsoft Office,
Microsoft Lync
Bulletin 2 Critical 
Remote Code Execution
Requires restart Microsoft Windows,
Internet Explorer
Bulletin 3 Critical 
Remote Code Execution
Requires restart Microsoft Windows
Bulletin 4 Critical 
Remote Code Execution
May require restart Microsoft Windows
Bulletin 5 Critical 
Remote Code Execution
Does not require restart Microsoft Exchange
Bulletin 6 Important 
Remote Code Execution
May require restart Microsoft Office,
Microsoft Server Software
Bulletin 7 Important 
Elevation of Privilege
Requires restart Microsoft Windows
Bulletin 8 Important 
Elevation of Privilege
Requires restart Microsoft Windows
Bulletin 9 Important 
Elevation of Privilege
Does not require restart Microsoft Developer Tools
Bulletin 10 Important 
Information Disclosure
May require restart Microsoft Office
Bulletin 11 Important 
Security Feature Bypass
May require restart

Microsoft Office

The Bottom Line: Please reboot your Windows Computers and Servers Wednesday Morning

PS: If you use Linux, Unix, or Mac Operating systems, please disregard this message.