Exchange sustained engineering has released Exchange 2007 SP3 RU10 to the Microsoft download centre as update 2788321

 

For the astute of you out there, you will notice that this is on the second Tuesday of February which makes it Patch Tuesday.  It  also happens to be Shrove Tuesday as well by happy coincidence so I’m having pancakes for dinner, but I think I’m digressing…..  

 

Since it is Patch Tuesday, does that mean that there are security issues that are resolved in this update?  Yup! In terms of the security vulnerabilities resolved, they are CVE-2013-0393 and CVE-2013-0418 as discussed in the Oracle Critical Patch Update Advisory - January 2013.    Microsoft has classified one of these issues as critical and the other as important

Exchange 2007 SP3 Oracle Security Vulnerabilities January 2013

 

In short, Exchange 2007 SP3 RU10 will update these three areas:

 

As always please ensure that you test and validate the update in a lab prior to placing into production.

 

Just in case you may be wondering why this update is for Exchange 2007 SP3, and not SP1 or SP2 it is because those versions are no longer supported

 

Cheers,

Rhoderick