MS13-007: Description of the security update for the Management OData IIS Extension on Windows Server 2012: January 8, 2013

2017-01-07T21:37:04
ID KB2753596
Type mskb
Reporter Microsoft
Modified 2013-01-08T17:51:54

Description

<html><body><p>Resolves a vulnerability in the Open Data (OData) protocol that could allow denial of service if an unauthenticated attacker sends specially crafted HTTP requests to an affected site.</p><h2>INTRODUCTION</h2><div class="kb-summary-section section">Microsoft has released security bulletin MS13-007. To view the complete security bulletin, go to one of the following Microsoft websites: <ul class="sbody-free_list"><li>Home users:<br/><div class="indent"><a href="http://www.microsoft.com/security/pc-security/bulletins/201301.aspx" id="kb-link-1" target="_self">http://www.microsoft.com/security/pc-security/bulletins/201301.aspx</a></div><span class="text-base">Skip the details</span>: Download the updates for your home computer or laptop from the Microsoft Update website now:<br/><div class="indent"><a href="http://update.microsoft.com/microsoftupdate/" id="kb-link-2" target="_self">http://update.microsoft.com/microsoftupdate/</a></div></li><li>IT professionals:<br/><div class="indent"><a href="http://technet.microsoft.com/security/bulletin/ms13-007" id="kb-link-3" target="_self">http://technet.microsoft.com/security/bulletin/MS13-007</a></div></li></ul><h3 class="sbody-h3">How to obtain help and support for this security update</h3> <br/>Help installing updates: <br/><a href="https://support.microsoft.com/ph/6527" id="kb-link-4" target="_self">Support for Microsoft Update</a><br/><br/>Security solutions for IT professionals: <br/><a href="http://technet.microsoft.com/security/bb980617.aspx" id="kb-link-5" target="_self">TechNet Security Troubleshooting and Support</a><br/><br/>Help protect your computer that is running Windows from viruses and malware:<br/><a href="https://support.microsoft.com/contactus/cu_sc_virsec_master" id="kb-link-6" target="_self">Virus Solution and Security Center</a><br/><br/>Local support according to your country: <br/><a href="https://support.microsoft.com/common/international.aspx" id="kb-link-7" target="_self">International Support</a><br/><br/></div><h2>FILE INFORMATION</h2><div class="kb-summary-section section">The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files. <div class="faq-section" faq-section=""><div class="faq-panel"><div class="faq-panel-heading" faq-panel-heading=""><span class="link-expand-image"><span class="faq-chevron win-icon win-icon-ChevronUpSmall"></span></span><span class="bold btn-link link-expand-text"><span class="bold btn-link">For supported versions of Windows Server 2012</span></span></div><div class="faq-panel-body" faq-panel-body=""><span><div class="kb-collapsible kb-collapsible-collapsed"><div class="table-responsive"><table class="sbody-table table"><tr class="sbody-tr"><th class="sbody-th">File name</th><th class="sbody-th">File version</th><th class="sbody-th">File size</th><th class="sbody-th">Date</th><th class="sbody-th">Time</th><th class="sbody-th">Platform</th></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.data.edm.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">659,048</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:41</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.data.edm.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">659,048</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:42</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.data.odata.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">842,344</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:41</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.data.odata.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">842,344</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:42</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.data.services.client.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">590,944</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:41</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.data.services.client.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">590,944</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:42</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.data.services.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">838,240</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:41</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.data.services.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">838,240</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:42</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">26,112</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:16</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">27,648</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:27</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">25,088</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:26</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">27,136</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:27</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">28,672</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:26</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">27,648</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">10:01</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">26,624</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">09:48</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">30,208</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:26</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">28,160</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">12:20</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">27,136</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">10:35</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">26,624</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">10:33</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">26,112</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:05</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">27,136</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">10:33</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">33,792</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:23</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">26,112</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">09:44</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">25,600</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:37</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">23,040</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">12:11</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">23,040</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:07</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">23,040</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:44</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">26,112</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">10:42</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">27,648</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:55</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">25,088</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:51</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">27,136</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:51</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">28,672</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:51</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">27,648</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:17</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">26,624</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:44</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">30,208</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">07:53</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">28,160</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">09:35</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">27,136</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">09:24</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">26,624</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">10:57</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">26,112</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">09:36</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">27,136</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:55</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">33,792</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:40</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">26,112</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:54</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">25,600</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:33</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">23,040</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">10:32</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">23,040</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:11</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.resources.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">23,040</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">11:20</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.dll</td><td class="sbody-td">6.2.9200.16409</td><td class="sbody-td">384,000</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">05:50</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">Microsoft.management.odata.dll</td><td class="sbody-td">6.2.9200.20509</td><td class="sbody-td">384,000</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">06:55</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">System.spatial.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">114,784</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:41</td><td class="sbody-td">x86</td></tr><tr class="sbody-tr"><td class="sbody-td">System.spatial.powershell.dll</td><td class="sbody-td">5.0.0.50712</td><td class="sbody-td">114,784</td><td class="sbody-td">01-Sep-2012</td><td class="sbody-td">00:42</td><td class="sbody-td">x86</td></tr></table></div></div><br/></span></div></div></div></div></body></html>