All the latest UK technology news, reviews and analysis

Microsoft details first critical patches of 2013

08 Jan 2013

Microsoft's has issued more details on its first Patch Tuesday updates of the year, which include two critical fixes.

The firm announced the new patches would be made available last week and has now issued more information on what the fixes cover as they go live.

Microsoft has rolled out two critical patches for the month. One will fix a remote code execution exploit in print servers. The other will correct a remote code execution exploit for Microsoft's XML Core Services.

The two critical patches expect to receive the most attention for the month. However, Core Security senior product manager Alex Horan warned that a bulletin Microsoft earmarked as "important" could have the most lasting effects of the bunch.

Bulletin 5 covers an elevation of privilege exploit that could allow an attacker to run specifically created applications on affected machines. Horan says the patch is important because the exploit has the potential to affect a large amount of users.

"Bulletin 5 may end up being the most significant as it targets Vista Service Pack 2, Server 2008 and Windows 7," said Horan.

"This has the potential for the most long-term issues as it represents an extremely large base of potential targets if it is not rectified properly."

This months Patch Tuesday will also feature one non-critical update that analysts say can pay dividends for future protection.

"We encourage customers to start 2013 on a secure foot by applying these security updates to help ensure protection in the New Year," said Microsoft Trustworthy Computing group manager Dustin Childs.

"Customers who have automatic updates enabled will receive these protections automatically and do not need to take action."

All of the patches come from Microsoft's monthly Patch Tuesday event. This month's offerings come following December's Patch Tuesday which featured a slew of critical updates.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
James Dohnert

James is a freelance writer and editor. In addition to ClickZ, his work has appeared in publications like V3, The Commonwealth Club,, and Shonen Jump magazine. He studied Journalism at Weber State University.

More on Security
What do you think?
blog comments powered by Disqus

Tech gifts for Christmas 2014

Is a new tablet on your wish list this festive season, or have they become yesterday’s fad?

Popular Threads

Powered by Disqus
iPhone 6 is available in silver gold and space grey

iPhone 6 video review

The best iOS handset to date

Updating your subscription status Loading

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging


Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Web Developer / Website Maintenance Engineer HTML, CSS

Web Developer / Website Maintenance Engineer - HTML...

Business Analyst - Agile / Data / Web / Digital

Business Analyst, Business Analysis, Agile, Scrum, Data...

IT Technician

IT Technician Internal Grade: 3 Ref : JDITTech...

Senior Network Engineer

Senior Network Engineer Fixed Term (2 years...
To send to more than one email address, simply separate each address with a comma.