The original Microsoft Security Bulletin, MS12-062, pertaining to a patch for Configuration Manager (and SMS) environments was a tad bit confusing. So much so, that since the release of the bulletin there’s been a large uproar in the community trying to understand which version of ConfigMgr were actually affected. The original bulletin was poorly worded, causing a maelstrom of back and forth discussions – both online and offline.
Overnight, the bulletin has been altered to better reflect the situation. Yay, community!
From the Revisions section:
In fact, when you look now, you’ll see a much simpler notation on affected versions. The ONLY version of ConfigMgr not affected is ConfigMgr 2012.
You should also note that this update will NOT be detected through WSUS. You MUST use the download links provided in the bulletin and deploy this like any other software package. The requirements and switches are also included on the bulletin page.