KLA65505 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. A spoofing vulnerability in Microsoft SharePoint Server can be exploited remotely to spoof user interface.
2. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.

Original advisories

CVE-2024-26251

CVE-2024-26257

Related products

Microsoft-Office

Microsoft-SharePoint

CVE list

CVE-2024-26251 high

CVE-2024-26257 high

KB list

5002583

5002580

5002581

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update component usually can be accessed from the Control Panel) and updates from the Update Options section, that are listed in your Office Account (Office Account tab usually can be accessed from the File menu)

Install Office updates

Impacts

• ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

• SUI

Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.

Affected Products

• Microsoft 365 Apps for Enterprise for 32-bit SystemsMicrosoft 365 Apps for Enterprise for 64-bit SystemsMicrosoft SharePoint Server 2016Microsoft SharePoint Server 2019Microsoft Office LTSC for Mac 2021Microsoft SharePoint Server Subscription Edition