MS12-067: Vulnerability in FAST Search Server 2010 for SharePoint parsing could allow remote code execution: October 9, 2012

ID KB2742321
Type mskb
Reporter Microsoft
Modified 2012-10-18T18:01:09


<html><body><p>Resolves vulnerabilities in Microsoft FAST Search Server 2010 for SharePoint when the Advanced Filter Pack is enabled that could allow remote code execution in the security context of a user account that uses a restricted token.</p><h2>Introduction</h2><div class="kb-summary-section section">Microsoft has released security bulletin MS12-067. To view the complete security bulletin, go to one of the following Microsoft websites: <ul class="sbody-free_list"><li>Home users:<br/><div class="indent"><a href="" id="kb-link-1" target="_self"></a></div><span class="text-base">Skip the details</span>: Download the updates for your home computer or laptop from the Microsoft Update website now: <div class="indent"><a href="" id="kb-link-2" target="_self"></a></div></li><li>IT professionals:<br/><div class="indent"><a href="" id="kb-link-3" target="_self"></a></div></li></ul></div><h2></h2><div class="kb-summary-section section"><h3 class="sbody-h3">How to obtain help and support for this security update</h3>Help installing updates: <a href="" id="kb-link-4" target="_self">Support for Microsoft Update</a><br/><br/>Security solutions for IT professionals: <a href="" id="kb-link-5" target="_self">TechNet Security Troubleshooting and Support</a><br/><br/>Help protect your computer that is running Windows from viruses and malware: <a href="" id="kb-link-6" target="_self">Virus Solution and Security Center</a><br/><br/>Local support according to your country: <a href="" id="kb-link-7" target="_self">International Support</a></div><h2>More Information</h2><div class="kb-moreinformation-section section"><h3 class="sbody-h3">More information about this security update</h3><h3 class="sbody-h3">File hash information</h3><div class="table-responsive"><table class="sbody-table table"><tr class="sbody-tr"><td class="sbody-td"><span class="text-base">File name</span></td><td class="sbody-td"><span class="text-base">SHA1 hash</span></td><td class="sbody-td"><span class="text-base">SHA256 hash</span></td></tr><tr class="sbody-tr"><td class="sbody-td">fsserver2010-kb2553402-fullfile-x64-glb.exe</td><td class="sbody-td">6B5DE5FD8A1E98A8499270818BA7982DC494EDE4</td><td class="sbody-td">483DF2B31771FC81D972807B2D4A6995ADB014A1FE4F9FD7D08C612B2452729E</td></tr></table></div><h4 class="sbody-h4">Known issues and additional information about this security update</h4>The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link. <br/><ul class="sbody-free_list"><li><a href="" id="kb-link-8">2553402 </a> MS12-067: Description of the security update for FAST Search Server 2010 for SharePoint Service Pack 1: October 9, 2012<br/><br/><br/><br/><span class="text-base">Important</span> After you install this security update on all FAST servers, you must run the PSconfig tool to complete the installation. For more information about how to use the PSconfig tool, go to the following TechNet webpage: <br/><br/><br/> <div class="indent"><a href="" id="kb-link-9" target="_self"></a></div></li></ul></div></body></html>