MS13-013: Vulnerabilities in FAST Search Server 2010 for SharePoint parsing could allow remote code execution: February 12, 2013

2017-01-07T21:41:07
ID KB2784242
Type mskb
Reporter Microsoft
Modified 2013-02-12T17:38:15

Description

<html><body><p>Resolves vulnerabilities in Microsoft FAST Search Server 2010 for SharePoint when the Advanced Filter Pack is enabled that could allow remote code execution in the security context of a user account that uses a restricted token.</p><h2>Introduction</h2><div class="kb-summary-section section">Microsoft has released security bulletin MS13-013. To view the complete security bulletin, go to the following Microsoft website: <ul class="sbody-free_list"><li>IT professionals:<br/><div class="indent"><a href="http://technet.microsoft.com/security/bulletin/ms13-013" id="kb-link-1" target="_self">http://technet.microsoft.com/security/bulletin/MS13-013</a></div></li></ul></div><h2></h2><div class="kb-summary-section section"><h3 class="sbody-h3">How to obtain help and support for this security update</h3>Security solutions for IT professionals: <a href="http://technet.microsoft.com/security/bb980617.aspx" id="kb-link-2" target="_self">TechNet Security Troubleshooting and Support</a><br/><br/>Help protect your computer that is running Windows from viruses and malware: <a href="https://support.microsoft.com/contactus/cu_sc_virsec_master" id="kb-link-3" target="_self">Virus Solution and Security Center</a><br/><br/>Local support according to your country: <a href="https://support.microsoft.com/common/international.aspx" id="kb-link-4" target="_self">International Support</a></div><h2></h2><div class="kb-moreinformation-section section"><h3 class="sbody-h3">More information about this security update</h3><div class="faq-section" faq-section=""><div class="faq-panel"><div class="faq-panel-heading" faq-panel-heading=""><span class="link-expand-image"><span class="faq-chevron win-icon win-icon-ChevronUpSmall"></span></span><span class="bold btn-link link-expand-text"><span class="bold btn-link">File hash information</span></span></div><div class="faq-panel-body" faq-panel-body=""><span><div class="kb-collapsible kb-collapsible-collapsed"><div class="table-responsive"><table class="sbody-table table"><tr class="sbody-tr"><th class="sbody-th">File name</th><th class="sbody-th">SHA1 hash</th><th class="sbody-th">SHA256 hash</th></tr><tr class="sbody-tr"><td class="sbody-td">fsserver2010-kb2553234-fullfile-x64-glb.exe</td><td class="sbody-td">6FFAE7CA37A18012C06D5BA11D3AC88715A077CE</td><td class="sbody-td">7E30AE550EAB9D0FE05303D6AE4BD5271D8A206ED740E0CFA04F505F10102697</td></tr></table></div></div><br/></span></div></div></div><h4 class="sbody-h4">Known issues and additional information about this security update</h4>The following article contains additional information about this security update as it relates to individual product versions. The article may contain known issue information. If this is the case, the known issue is listed below each article link. <ul class="sbody-free_list"><li><a href="https://support.microsoft.com/en-us/help/2553234" id="kb-link-5">2553234 </a> MS13-013: Description of the security update for FAST Search Server 2010 for SharePoint Service Pack 1: February 12, 2013</li></ul></div><h2></h2><div class="kb-moreinformation-section section"><h4 class="sbody-h4">Security update replacement information</h4>This security update replaces the following security update:<div class="indent"><a href="https://support.microsoft.com/en-us/help/2742321" id="kb-link-7">2742321 </a> MS12-067: Vulnerability in FAST Search Server 2010 for SharePoint parsing could allow remote code execution: October 9, 2012</div></div></body></html>