MS13-029: Vulnerability in Remote Desktop Client could allow remote code execution: April 9, 2013

2013-04-0900:00:00

Microsoft

support.microsoft.com

EPSS

0.923

Percentile

99.0%

JSON

<html><body><p>Resolves a vulnerability in Windows Remote Desktop Client that could allow remote code execution if a user views a specially crafted webpage.</p><h2>INTRODUCTION</h2><div>Microsoft has released security bulletin MS13-029. To view the complete security bulletin, go to one of the following Microsoft websites: <ul><li>Home users:<br /><div><a href=“http://www.microsoft.com/security/pc-security/bulletins/201304.aspx” target=“_self”>http://www.microsoft.com/security/pc-security/bulletins/201304.aspx</a></div><span>Skip the details</span>: Download the updates for your home computer or laptop from the Microsoft Update website now:<br /><div><a href=“http://update.microsoft.com/microsoftupdate/” target=“_self”>http://update.microsoft.com/microsoftupdate/</a></div></li><li>IT professionals:<br /><div><a href=“http://technet.microsoft.com/security/bulletin/ms13-029” target=“_self”>http://technet.microsoft.com/security/bulletin/MS13-029</a></div></li></ul><h3>How to obtain help and support for this security update</h3>Help installing updates: <a href=“https://support.microsoft.com/ph/6527” target=“_self”>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals: <br /><a href=“http://technet.microsoft.com/security/bb980617.aspx” target=“_self”>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your Windows-based computer from viruses and malware: <a href=“https://support.microsoft.com/contactus/cu_sc_virsec_master” target=“_self”>Virus Solution and Security Center</a><br /><br />Local support according to your country: <br /><a href=“https://support.microsoft.com/common/international.aspx” target=“_self”>International Support</a><br /><br /></div><h2>More Information</h2><div><h3>More information about this security update</h3>The following articles contain more information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link. <ul><li><div><a href=“https://support.microsoft.com/en-us/help/2813345”>2813345 </a> MS13-029: Vulnerability in Remote Desktop Client could allow remote code execution: April 9, 2013</div></li><li><div><a href=“https://support.microsoft.com/en-us/help/2813347”>2813347 </a> MS13-029: Description of the security update for Remote Desktop Connection 7.0 Client: April 9, 2013</div></li></ul><div><div><div><span><span></span></span><span><span>File hash information</span></span></div><div><span><div><div><table><tr><th>File name</th><th>SHA1 hash</th><th>SHA256 hash</th></tr><tr><td>Windows6.0-KB2813345-ia64.msu</td><td>1B32A0EAE48D57BFD1632C4DC67F1AA5A0739521</td><td>2AF725E48148255BCE4FC0FA457CF0310D78F822F50137DF8CF09018CD215C44</td></tr><tr><td>Windows6.0-KB2813345-x64.msu</td><td>DA7FA78544AFE141A260D02BF5CE7B1A0BC4BA74</td><td>57AD0632122B30E57AD7C716AEBFD5B2EE2A5992E3C6CBEB146B9CCA5ACD3B72</td></tr><tr><td>Windows6.0-KB2813345-x86.msu</td><td>EEEC0230ECC031CD0AD0608A2C8FEC6121D930E0</td><td>BE3A635197FAA845C79DA935A985F78C479F3619807E8E585F16E485626EB2DA</td></tr><tr><td>Windows6.0-KB2813347-x64.msu</td><td>8E823346831F2832E29839C79EF1BB34F3F65E19</td><td>B434121C46803604B9B78094E67A1B18E05661396D7DF523E7A9BBE5CE8CF027</td></tr><tr><td>Windows6.0-KB2813347-x86.msu</td><td>DFCC80514C3FA66B89F4F6C3ADD676B97E78CDC2</td><td>E9A2EEC6D2671E3562CB910C4A85479ABEE02C4D778A3E8EFC0FB72C18C50523</td></tr><tr><td>Windows6.1-KB2813347-ia64.msu</td><td>514DE555E0E361A117B2F1ED30D3BAA7736684CF</td><td>4F3FF82196ACE90D16A394CFF67455C97245098FB91A80206A371C73FBB1B262</td></tr><tr><td>Windows6.1-KB2813347-x64.msu</td><td>76A7CDFABD3778DC9B4FFB603BBB5D9EAF3143AA</td><td>AA71D95EE2EB92D386AA1CBB8B1C7D59FA1B2664CD2006596C2D90EFB1DE1398</td></tr><tr><td>Windows6.1-KB2813347-x86.msu</td><td>3C262DCDF6ABAE2C733BBA2AAD62465FFCBE5B20</td><td>FE82CF08FF236B36DE77B7FE09E77F0F3725762130846E6CFBE4835D18D07DA6</td></tr><tr><td>WindowsServer2003-KB2813345-x86-CHS.exe</td><td>36732B90FB705C3BCAA4E3F262B775F27D16D599</td><td>09DF535938F7D188BC9372D5C1F106F21522C9D0F56D8B74E0A1B61514AA54E5</td></tr><tr><td>WindowsServer2003-KB2813345-x86-CHT.exe</td><td>461A44B71CB71CCB6078C3A597C0790D7A2E9C45</td><td>84F47862655C49466DB45514EE0FA6D0460FD04F0F8C3066B54A84265E3C794D</td></tr><tr><td>WindowsServer2003-KB2813345-x86-CSY.exe</td><td>ED51674E6777CA3DA93D2CA530915E111DFE863F</td><td>2F57FB0E6B577C9A8BFF2E813A4D90C209298F7C459B8BE58902C4BE44652271</td></tr><tr><td>WindowsServer2003-KB2813345-x86-DEU.exe</td><td>1A5725F1DF2847D2CDF2D36F8FF166E35EE18CC5</td><td>84FD4BD45B745110DC2C7FC90E691518337B3D9562C2325FA9B5F80C55E9F027</td></tr><tr><td>WindowsServer2003-KB2813345-x86-ENU.exe</td><td>2A461432292AB5592D9E919DDDC4389863AA9EB6</td><td>3E26F6450B1A48BEF6699F2274CEE2FFF237CF4F9B0984CD4AFE7166647B5877</td></tr><tr><td>WindowsServer2003-KB2813345-x86-ESN.exe</td><td>BBA9762D6A12349B670D8492708D113066697D5E</td><td>4AE3A3C1A28F7BDCB3F3E1C9C8E263CEC931F73B469AC3DA73C3486189CDC87D</td></tr><tr><td>WindowsServer2003-KB2813345-x86-FRA.exe</td><td>9377F15606056BC4BE17A7E5391CAFC9C9CC05CD</td><td>C3A818B366A5F47FD5571AC7BB133A7830337BA79ACEEB9E7060BC3D85AC8EAA</td></tr><tr><td>WindowsServer2003-KB2813345-x86-HUN.exe</td><td>FACA98F61AE0672A1680D60B8090446757CC41B0</td><td>316EC0CA843F3B92075E004059862541B413237A84258DED7AB8410CA8024FAE</td></tr><tr><td>WindowsServer2003-KB2813345-x86-ITA.exe</td><td>222F92643BC6A26B70D59FB83BE92D4C79B85F4F</td><td>6F127248FFD79326F32C24D3D5497811DA0BA4B5A3FCDE350A3C60C36487383B</td></tr><tr><td>WindowsServer2003-KB2813345-x86-JPN.exe</td><td>AF3984D3426717CACE9AE954CC248A588CC1184B</td><td>CB484861BA2815BB572F7BAEE625C4F6DC28865B9905898C653106DE5E258CE5</td></tr><tr><td>WindowsServer2003-KB2813345-x86-KOR.exe</td><td>C8907C2AB48779E9D56BECAE86C1AD1CB3D5EF29</td><td>EFBD6371DC6AF2631CA102745C990B201588FC5A846BA68B99B1B4D299053727</td></tr><tr><td>WindowsServer2003-KB2813345-x86-NLD.exe</td><td>F7BC3E23A1479D776273363BCF75C583D4C978C6</td><td>6CCA3422D375E50DC1613FE88BF543997A4ECADE2F6558B15DF83CDF794F3995</td></tr><tr><td>WindowsServer2003-KB2813345-x86-PLK.exe</td><td>29EA7CC25D2B15B94932A1185B1887F445B081A4</td><td>BF44EB628CCA585F75C4557A1D6DA75C9FC179A7DE7C7E33E2A626390C004104</td></tr><tr><td>WindowsServer2003-KB2813345-x86-PTB.exe</td><td>597085944EFDED770CB5E30354F8C299034BFAE1</td><td>5C76DD7F8E3F1771A8559C606C94009EF355AD5C126D2773F4AAB1CA2A3671A9</td></tr><tr><td>WindowsServer2003-KB2813345-x86-PTG.exe</td><td>F1710FDD6A36F09F3B75C1C7D571D2604EDC2353</td><td>E123481406A982C73A5ADC5B925154A7CAD6F1A548DA0BF6F26CBD785E5FE2B2</td></tr><tr><td>WindowsServer2003-KB2813345-x86-RUS.exe</td><td>15129610BB73B85D08A08775AF859FD8EF7C7A1A</td><td>0AD80CA6587E6319F0D5CE8E87FC2FA3CD3B5390DC907E16703D83F8CD094EA7</td></tr><tr><td>WindowsServer2003-KB2813345-x86-SVE.exe</td><td>2C0723B0750040626BBC5631794F90AEF761B290</td><td>877B8699B10306B7D2578BAF7E37A76050294B59F46BE755594752F38F5BFE97</td></tr><tr><td>WindowsServer2003-KB2813345-x86-TRK.exe</td><td>593BCF86558260FAD5DA0070B80DD53C5A806235</td><td>CD98196F4AE6C4B247202B2BF46A23018F0863C003E16ED9E456200E859AD870</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-CHS.exe</td><td>BE24E1056125F71328A726167AB20F9A45190E13</td><td>538490956599E6838172DA746999E260D0C57B5412CE6088E45EA4CE6A07EB87</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-CHT.exe</td><td>93BCCEB628CA476E58DC9D1513136DEB9BB6EB99</td><td>E7258B30441C8638265C1661A0CC2FF755FDD615790DEEAB5C4FE410AE48E70F</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-DEU.exe</td><td>5DE227DF6B901D98FBCAD0D38865885E95A6E840</td><td>00E712CA26949EB01FB3FF74C5A1D65950086121851C0D05695C4DF9B57F8D1B</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-ENU.exe</td><td>52D251FDFC06F15DE9EF0DE0203581E2D9869957</td><td>3D31BAB2C9B5F127423C244D4E7AB0EA827B7474CFA3FA022B7D188A92342736</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-ESN.exe</td><td>1C4E90CF9B0F58252DF8D1376167D486FE87730F</td><td>EE048EC49715B30D4008F75646978215A9C74F61E91548C57B98C112A08B4338</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-FRA.exe</td><td>208D5D8302CEC2A6FAA35155A5F33EEA62516BB2</td><td>840914122F460DE1151BDD2B9A9AA4A98E748584E683F11A7DE70DF78A641A61</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-ITA.exe</td><td>BB1177A8F3461BAAD4BCE92B6A36620C0B2DDF2F</td><td>21E96DD43EC7E22B85D8FFBBE5054D6C3FB3137E3B8D8969C016809552DC9659</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-JPN.exe</td><td>5BDB3F853A70A437735FC1ACFAC47B1442CD2627</td><td>CC2F71E2B777A9F674C64B2E023BCF4D9240E564D22D00FF7EC84D8EFB677701</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-KOR.exe</td><td>7994D6A6A782611DB661BCC30FF64A9EA6ABE78B</td><td>126ADDA5D1684C5F637C0838B0594E8D4BC9DA6073941F0582007370A5472678</td></tr><tr><td>WindowsServer2003.WindowsXP-KB2813345-x64-PTB.exe</td><td>A2E558CB0950767291521B56B4B5D01BD66FA1E4</td><td>ED79AD5EF1D34A2113841522A01C737BA48FBED59686CBB9BB08E369184DECBF</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-ARA.exe</td><td>899C85E33FC1F8B639DDE9FE64D56A5D25E5D915</td><td>930194E49F8C8F28EC05C7DEA8A1CA3BBAF122A760B909C7E90351C2F646BF18</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-CHS.exe</td><td>074D9195C3B517E91388D15C46263E97BB282F91</td><td>22CD5266EE8C25C577C4042C1C5225F1815665F6E1AE3331C93887BA378BFB9C</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-CHT.exe</td><td>681D8DF5BCC785D5CB6DFB3474636DFFE9B27941</td><td>8E0B21AE6B3A77ACF577123E660A339238601419C21C360A4723D5D91254311F</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-CSY.exe</td><td>B121E117595D66C8EC6615ACF80AE1FB08DFC57D</td><td>97B6A0F36E1AD241C8D1AAB8D42B6FEB22B182A0095C3C102F69F9A6E8810C06</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-DAN.exe</td><td>8F5D0366AA29E084C127AF1E2EEEABE3E34A410D</td><td>26B5FE4936497386885EB9341FCF9F14C787A1F6511C088F44C5BF14B771AA57</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-DEU.exe</td><td>611789F9F5DC70C73A5B7BF73B6E4BF069071544</td><td>A8DCB358533B7585E73C3C7EF5228F0E72B1D81B19F6C4C644A25223F095E1E0</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-ELL.exe</td><td>AED0B39406415D68568F774EE56DF8C76C9FDA1E</td><td>B26B7B15B7BD8B0872C1911922A9006625F320CA16630A71B6B71A771B8E7224</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-ENU.exe</td><td>7F5B07E5464702CDFA24A869D21F55335223069A</td><td>C4EE2E5F9E95983AE94C9953CEA17ED951D9040452BA80A5DA65D36138E29BB2</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-ESN.exe</td><td>5C71D53C1E98D6604C2E8DD08411E6FE683F9117</td><td>2900B87B3146246C28B0AC27F33D45292230B3784E443BA9B55F7789F4F70166</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-FIN.exe</td><td>5A40879013A1537FF9C013F28337DB188EAC0E6E</td><td>06C918FD9B4129319A09421E257A8982BA1573C8BB4AAC6A59BD8824156442E6</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-FRA.exe</td><td>5E854A17963A813FD58ECF45450215C9C087F8FF</td><td>BF01DDAFC04529D2BADD36D4E33911578919C9FC2369B6E649F0825C31D6E65F</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-HEB.exe</td><td>12A8457DF10A3E7C6D41A08D7C6AC126C0191A53</td><td>26E6C0E3089C9E4FCF3A701076F00F8653FC6373689AB78AF0D7461A2A14B173</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-HUN.exe</td><td>320B8DDB03098102DE0FE39D3D367E2B59A568AD</td><td>C8513D9E4987D15B6402A5D215CB3973320530287241F0452C5D8EAA3517DFDC</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-ITA.exe</td><td>F641A1709517701CF1C3E73CAB2E94B8D9C3E99E</td><td>F91E2D714E4E51CBA5D00CFDB1FCC57A8EDDF5C005D0F0B3018EA335736F336C</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-JPN.exe</td><td>7131B5A4A346F0CE48EF4E87A45226585E4E989F</td><td>BC1D13DBBF2DD58287B09294932EE2CDCFDA0FF4B014BADC0477F29F4102D1AB</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-KOR.exe</td><td>309DFDDF27DF6D2C6BDB947A3A20DF7BE0C5DA01</td><td>D9E0DF36F5B8A3F4B36EA396FCC2EF76CA770FBF96834CB271816BD37F47967F</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-NLD.exe</td><td>388876A31CBEC49C8A7F0F995660028C1B91D57D</td><td>E5ECAB551FE906BACD2AA38B12790D28EE2FC41A59625BF974EA512F2A8A98D1</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-NOR.exe</td><td>9D8FB7C2DBD869FBEB3F22F85BBBADFC147F5BF7</td><td>3F1668753F6827213A1C7EE0C6FCE8656DB46A6156067C693C2901E40EEF964F</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-PLK.exe</td><td>8D69D1D9E2354400C20A0F07F653776BF3204B7C</td><td>A52F1039CE4F63BF032833EAD67F8B56E1C905F00E762294D17C45206D0CD3D1</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-PTB.exe</td><td>49525492113F99F45A5B9E0377B2FBBF657105DF</td><td>E158577E63893C5C56BBF9E95E518996AEF9C3BFD9D8D4B1A214EA664DE50078</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-PTG.exe</td><td>9B980E7E4197EF63EB4B458C7CC9E86DAFA67289</td><td>45529C97A1800BB626408EF6BEE69568620B039F1F2878CAEEFEAC94968E9B42</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-RUS.exe</td><td>7715CDA4907F0C982FFF7D0BC72AD0DF29B5A064</td><td>591409F1F0BCD596F9947EBE326FD8CA267A0B01C91294C66521E8B915D91269</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-SVE.exe</td><td>C37709C3D8E8F8B02C913279CE4BFA39C1350391</td><td>B11A05DFEF97D5894E851E1C0F4D48496AA0DB516E66E4D6E61D7680D34A2257</td></tr><tr><td>WindowsXP-KB2813347-v2-x86-TRK.exe</td><td>5F6DD866CD43D7E4B909CFAF01DDF2AE6B8CE866</td><td>BE73C62590B61722ED333D6400A6E786AD3F6B72E310E886BCA36E8F5E932CDA</td></tr></table></div></div><br /></span></div></div></div></div></body></html>

EPSS

0.923

Percentile

99.0%

JSON

Related for KB2828223