MS13-103: Vulnerability in ASP.NET SignalR could allow elevation of privilege: December 10, 2013

Microsoft has released security bulletin MS13-103. To view the complete security bulletin, visit one of the following Microsoft websites:

• Home users:
  
  http://www.microsoft.com/security/pc-security/updates.aspx
  Skip the details: Download the updates for your home computer or laptop from the Microsoft Update website now:
  
  http://update.microsoft.com/microsoftupdate/
• IT professionals:
  
  http://technet.microsoft.com/security/bulletin/MS13-103

How to obtain help and support for this security update

Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

• ASP.NET SignalR 1.1.x 
• ASP.NET SignalR 2.0.x 
• Microsoft Visual Studio Team Foundation Server 2013

Note The ASP.NET SignalR updates apply to Windows-based servers that host web applications that support ASP.NET SignalR functionality. These updates are available only for download, and they update versions 1.1.0, 1.1.1, 1.1.2, 1.1.3, and version 2.0.0 to the latest supported versions (1.1.4 and 2.0.1, as of the date of this bulletin). See the "Security Update Deployment" section of the security bulletin for more information.