Microsoft has released the December updates to their software. The updates address vulnerabilities that may allow remote code execution, elevation of privilege, information disclosure, or security feature bypass.
The IT Security Office advises owners of the software listed below update as soon as possible:
The Microsoft Security Bulletin Summary for December 2013
Release date: December 10, 2013
Additional information about this vulnerability can be viewed at:
If you have any questions, please contact the IT Service Center at 303-735-4357 (or 5-HELP from an on-campus phone) or firstname.lastname@example.org.
OIT has defined the following categories to describe the severity of security risks:
URGENT severity represents a broad threat to the entire campus community.
SEVERE severity included remote exploits and worms.
IMPORTANT severity includes virus and local exploits for commonly used services.