9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
<html><body><p>This security update addresses the vulnerabilities by correcting how Microsoft Excel and other affected Microsoft software validates data when parsing specially crafted Office files and by correcting how the XML parser used by Excel resolves external entities within a specially crafted file.</p><h2>INTRODUCTION</h2><div>Microsoft has released security bulletin MS13-073. To view the complete security bulletin, visit one of the following Microsoft websites: <ul><li>Home users:<div><a href=โhttp://www.microsoft.com/security/pc-security/updates.aspxโ target=โ_selfโ>http://www.microsoft.com/security/pc-security/updates.aspx</a></div><span>Skip the details</span>: Download the updates for your home computer or laptop from the Microsoft Update website now:<br /><div><a href=โhttp://update.microsoft.com/microsoftupdate/โ target=โ_selfโ>http://update.microsoft.com/microsoftupdate/</a></div></li><li>IT professionals:<div><a href=โhttp://technet.microsoft.com/security/bulletin/ms13-073โ target=โ_selfโ>http://technet.microsoft.com/security/bulletin/MS13-073</a></div></li></ul><h3>How to obtain help and support for this security update</h3> Help installing updates: <a href=โhttps://support.microsoft.com/ph/6527โ target=โ_selfโ>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals: <br /><a href=โhttp://technet.microsoft.com/security/bb980617.aspxโ target=โ_selfโ>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your computer that is running Windows from viruses and malware:<br /><a href=โhttps://support.microsoft.com/contactus/cu_sc_virsec_masterโ target=โ_selfโ>Virus Solution and Security Center</a><br /><br />Local support according to your country: <br /><a href=โhttps://support.microsoft.com/common/international.aspxโ target=โ_selfโ>International Support</a><br /><br /></div><h2></h2><div><h3>Known issues and additional information about this security update</h3>The following articles contain additional information about this security update as it relates to individual product versions. These articles may contain known issue information. If this is the case, the known issue is listed below each article link. <ul><li><a href=โhttps://support.microsoft.com/en-us/help/2760583โ>2760583 </a> MS13-073: Description of the security update for Microsoft Office Excel 2007: September 10, 2013</li><li><a href=โhttps://support.microsoft.com/en-us/help/2760588โ>2760588 </a> MS13-073: Description of the security update for Microsoft Excel 2007 (xlconv-x-none.msp): September 10, 2013</li><li><a href=โhttps://support.microsoft.com/en-us/help/2760590โ>2760590 </a> MS13-073: Description of the security update for Microsoft Office Excel Viewer 2007: September 10, 2013</li><li><a href=โhttps://support.microsoft.com/en-us/help/2760597โ>2760597 </a> MS13-073: Description of the security update for Microsoft Excel 2010: September 10, 2013</li><li><a href=โhttps://support.microsoft.com/en-us/help/2768017โ>2768017 </a> MS13-073: Description of the security update for Microsoft Excel 2013: September 10, 2013</li><li><a href=โhttps://support.microsoft.com/en-us/help/2810048โ>2810048 </a> MS13-073: Description of the security update for Microsoft Excel 2003: September 10, 2013</li></ul><div><div><div><span><span></span></span><span><span>File hash information</span></span></div><div><span><div><div><table><tr><th>File name</th><th>SHA1 hash</th><th>SHA256 hash</th></tr><tr><td>excel2007-kb2760583-fullfile-x86-glb.exe</td><td>8FD16A3D1C4DA075891721202BC5734B75229F21</td><td>A741EA7CE7FABB40D011C3141EBBB06C6B6473DB23B57D90A8A52A24A5820AE0</td></tr><tr><td>excel2010-kb2760597-fullfile-x64-glb.exe</td><td>EA9BEBA1E7D06C13531A67671A5E73259FBDE93D</td><td>134497AEA1D38DB03032CD58BFF4B619D8CD16938709E1EE7F73EDFCE59A6CDF</td></tr><tr><td>excel2010-kb2760597-fullfile-x86-glb.exe</td><td>0A329ED77A783DBAE7DB221DEA444E2508671A38</td><td>FE471E005A512AD64B9F4DD9CE653741A7874E6088D48E6BD78F3C582191832A</td></tr><tr><td>graph2010-kb2687275-fullfile-x64-glb.exe</td><td>07D569E5CA650CB5E4BDF090E4BE6EAC91511018</td><td>98999DDB40B437D0A2E9C9DA6827F6A369F7D914E0FF1E6F0A8AD468797CFC13</td></tr><tr><td>graph2010-kb2687275-fullfile-x86-glb.exe</td><td>71598A0D6E189AD0D4E4785EC5ACC2A4F4823814</td><td>32458E0DDDBD6D9805C94E419B567050AE0943CFC8B333FBAAA7734033F38AE2</td></tr><tr><td>wdsrv2010-kb2760755-fullfile-x64-glb.exe</td><td>F55883F6C0D5A5EDD2F04747880159D96A72743F</td><td>5B4F1B2D87C63D0B9DCB017FF5B09ED309A7C8402AD34694FACEB1F43150E126</td></tr><tr><td>xlconv2007-kb2760588-fullfile-x86-glb.exe</td><td>60F61CB663E9562E32799E2188D11DB346313E31</td><td>6644B99D1A83B7D32D8D9C8A90FEE7742160A3B6F020FE3BF303FE454CD0ABEB</td></tr><tr><td>xlsrv2010-kb2760595-fullfile-x64-glb.exe</td><td>B4D49782733AC2158F1C07177DB44320A543AC34</td><td>CAA100BC32C152A21E0391D3779360E70F8062006C938A7E2D3F51F378C0ECF0</td></tr><tr><td>xlsrvapp2007-kb2760589-fullfile-x64-glb.exe</td><td>B188BF54191B670760C514ED44A8066FC03A528A</td><td>295C2683D3D0BC90604694735F1C20C98B350217BEC7BCB8F0E35A8567F9D768</td></tr><tr><td>xlsrvapp2007-kb2760589-fullfile-x86-glb.exe</td><td>6E90D96E807A8694CEBFA1459F2AB696FDD56DF6</td><td>6AA3CC62A521B10629C4998567A63A3BEC61F48243780AA79C40F96FAF7B8B44</td></tr><tr><td>xlview2007-kb2760590-fullfile-x86-glb.exe</td><td>55C7B6442366AFC6EACFDF6047EA9F1335933B0D</td><td>EF672F28301954566CC33E9425155729AF1EF9E350EB055E735DF464DB1A9F95</td></tr><tr><td>xlwac2010-kb2760594-fullfile-x64-glb.exe</td><td>722CDD51E9AF23F29372D020938AEFC5DA350096</td><td>E7116450C7F9304939EFA1F74B9D0E2655243455964478DA485229CD7D55EBF3</td></tr></table></div></div><br /></span></div></div></div></div></body></html>