Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB3038999
HistoryMar 10, 2015 - 12:00 a.m.

MS15-022: Vulnerabilities in Office could allow remote code execution: March 10, 2015

2015-03-1000:00:00
Microsoft
support.microsoft.com
76

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

<html><body><p>Resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Microsoft Office file.</p><h2>Summary</h2><div>This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Excel workbook in an affected version of Office software. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user.<br /><br /></div><h2>Introduction</h2><div>Microsoft has released security bulletin MS15-022. To learn more about this security bulletin:<br /><ul><li>Home users:<br /><div><a href=“https://www.microsoft.com/security/pc-security/updates.aspx” target=“_self”>https://www.microsoft.com/security/pc-security/updates.aspx</a></div><span>Skip the details</span> - Download the updates for your home computer or laptop from the Microsoft Update website now: <div><a href=“https://update.microsoft.com/microsoftupdate/” target=“_self”>https://update.microsoft.com/microsoftupdate/</a></div></li><li>IT professionals:<br /><div><a href=“https://technet.microsoft.com/library/security/ms15-022” target=“_self”>https://technet.microsoft.com/library/security/MS15-022</a></div></li></ul><h3>How to obtain help and support for this security update</h3>Help installing updates:<br /><a href=“https://support.microsoft.com/ph/6527” target=“_self”>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals:<br /><a href=“https://technet.microsoft.com/security/bb980617.aspx” target=“_self”>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your Windows-based computer from viruses and malware:<br /><a href=“https://support.microsoft.com/contactus/cu_sc_virsec_master” target=“_self”>Virus Solution and Security Center</a><br /><br />Local support according to your country:<br /><a href=“https://support.microsoft.com/common/international.aspx” target=“_self”>International support</a><br /><br /></div><h2>More Information</h2><div><h3>Known issues and additional information about this security update</h3>The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link.<br /><ul><li><a href=“https://support.microsoft.com/help/2984939” target=“_self”>KB 2984939 MS15-022: Description of the security update for 2007 Microsoft Office Suite: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956189” target=“_self”>KB 2956189 MS15-022: Description of the security update for Microsoft Office Excel Viewer 2007: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956188” target=“_self”>KB 2956188 MS15-022: Description of the security update for Word Viewer: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956183” target=“_self”>KB 2956183 MS15-022: Description of the security update for SharePoint Foundation 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956181” target=“_self”>KB 2956181 MS15-022: Description of the security update for SharePoint Enterprise Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956180” target=“_self”>KB 2956180 MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956163” target=“_self”>KB 2956163 MS15-022: Description of the security update for Word 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956158” target=“_self”>KB 2956158 MS15-022: Description of the security update for Office Web Apps Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956153” target=“_self”>KB 2956153 MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956151” target=“_self”>KB 2956151 MS15-022: Description of the security update for Office 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956143” target=“_self”>KB 2956143 MS15-022: Description of the security update for Excel Services in SharePoint Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956142” target=“_self”>KB 2956142 MS15-022: Description of the security update for Microsoft Excel 2010: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956139” target=“_self”>KB 2956139 MS15-022: Description of the security update for Word 2010: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956138” target=“_self”>KB 2956138 MS15-022: Description of the security update for Office 2010: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956136” target=“_self”>KB 2956136 MS15-022: Description of the security update for SharePoint Server 2010: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956109” target=“_self”>KB 2956109 MS15-022: Description of the security update for Word 2007 SP3: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956107” target=“_self”>KB 2956107 MS15-022: Description of the security update for Office Compatibility Pack SP3: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956106” target=“_self”>KB 2956106 MS15-022: Description of the security update for Microsoft Office Compatibility Pack Service Pack 3: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956103” target=“_self”>KB 2956103 MS15-022: Description of the security update for Microsoft Excel 2007 Service Pack 3: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956076” target=“_self”>KB 2956076 MS15-022: Description of the security update for Office 2010 Service Pack 2: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956069” target=“_self”>KB 2956069 MS15-022: Description of the security update for Office Web Apps Service Pack 2: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2920812” target=“_self”>KB 2920812 MS15-022: Description of the security update for Office 2010 Service Pack 2 PowerPoint 2010: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2920731” target=“_self”>KB 2920731 MS15-022: Description of the security update for SharePoint Server 2013 Word Automation Services: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2899580” target=“_self”>KB 2899580 MS15-022: Description of the security update for PowerPoint 2007 Service Pack 3: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2889839” target=“_self”>KB 2889839 MS15-022: Description of the security update for Microsoft Office 2010 Service Pack 2 (Oartconv.dll): March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2883100” target=“_self”>KB 2883100 MS15-022: Description of the security update for Microsoft Office 2010 Service Pack 2 (Oart.dll): March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2881078” target=“_self”>KB 2881078 MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2881068” target=“_self”>KB 2881068 MS15-022: Description of the security update for Windows SharePoint Services 3.0: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2880473” target=“_self”>KB 2880473 MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2760554” target=“_self”>KB 2760554 MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2760508” target=“_self”>KB 2760508 MS15-022: Description of the security update for SharePoint Foundation 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2760361” target=“_self”>KB 2760361 MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2737989” target=“_self”>KB 2737989 MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956208” target=“_self”>KB 2956208 MS15-022: Description of the security update for SharePoint Foundation 2010: March 10, 2015</a></li><li><a href=“https://support.microsoft.com/help/2956175” target=“_self”>KB 2956175 MS15-022: Description of the security update for SharePoint Server 2013 and SharePoint Foundation 2013: March 10, 2015</a></li></ul><div><div><div><span><span></span></span><span><span>Security update deployment information</span></span></div><div><span><div><h4>Microsoft Office 2007 (all editions) and other software</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For Microsoft Office 2007 Service Pack 3:<br /><span>mso2007-kb2984939-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Excel 2007 Service Pack 3:<br /><span>excel2007-kb2956103-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft PowerPoint 2007 Service Pack 3:<br /><span>powerpoint2007-kb2899580-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Word 2007 Service Pack 3:<br /><span>word2007-kb2956109-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Excel Viewer:<br /><span>xlview2007-kb2956189-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Word Viewer:<br /><span>office-kb2956188-fullfile-enu.exe</span></td></tr><tr><td></td><td>For Microsoft Office Compatibility Pack:<br /><span>wordconv2007-kb2956107-fullfile-x86-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.<br /><br />To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>Use <span>Add or Remove Programs</span> item in <span>Control Panel</span>.</td></tr><tr><td><span>File information</span></td><td>See the file information section of the related KB article. </td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft Office 2010 (all editions)</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For Microsoft Office 2010 Service Pack 2 (32-bit editions):<br /><span>kb24286772010-kb2956138-fullfile-x86-glb.exe<br />msoloc2010-kb2956076-fullfile-x86-glb.exe<br />oart2010-kb2883100-fullfile-x86-glb.exe<br />oartconv2010-kb2889839-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Office 2010 Service Pack 2 (64-bit editions):<br /><span>kb24286772010-kb2956138-fullfile-x64-glb.exe<br />msoloc2010-kb2956076-fullfile-x64-glb.exe<br />oart2010-kb2883100-fullfile-x64-glb.exe<br />oartconv2010-kb2889839-fullfile-x64-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Excel 2010 Service Pack 2 (32-bit editions):<br /><span>excel2010-kb2956142-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Excel 2010 Service Pack 2 (64-bit editions):<br /><span>excel2010-kb2956142-fullfile-x64-glb.exe</span></td></tr><tr><td></td><td>For Microsoft PowerPoint 2010 Service Pack 2 (32-bit editions):<br /><span>powerpointloc2010-kb2920812-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft PowerPoint 2010 Service Pack 2 (64-bit editions):<br /><span>powerpointloc2010-kb2920812-fullfile-x64-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Word 2010 Service Pack 2 (32-bit editions):<br /><span>word2010-kb2956139-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Word 2010 Service Pack 2 (64-bit editions):<br /><span>word2010-kb2956139-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.<br /><br />To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>Use <span>Add or Remove Programs</span> item in <span>Control Panel</span>.</td></tr><tr><td><span>File information</span></td><td>See the file information section of the related KB article. </td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft Office 2013 (all editions)</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For supported editions of Microsoft Office 2013 (32-bit editions):<br /><span>mso2013-kb2956151-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For supported editions of Microsoft Office 2013 (64-bit editions):<br /><span>mso2013-kb2956151-fullfile-x64-glb.exe</span></td></tr><tr><td></td><td>For supported editions of Microsoft Word 2013 (32-bit editions):<br /><span>word2013-kb2956163-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For supported editions of Microsoft Word 2013 (64-bit editions):<br /><span>word2013-kb2956163-fullfile-x64-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Office Compatibility Pack Service Pack 3:<br /><span>xlconv2007-kb2956106-fullfile-x86-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.<br /><br />To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>Use <span>Add or Remove Programs</span> item in <span>Control Panel</span>.</td></tr><tr><td><span>File information</span></td><td>See the file information section of the related KB article. </td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft Office 2013 RT (all editions)</h4><div><table><tr><td><span>Deployment</span></td><td>The 2956151 update for Microsoft Office 2013 RT is available via <a href=“http://go.microsoft.com/fwlink/?linkid=21130” target=“_self”>Windows Update</a>.</td></tr><tr><td></td><td>The 2956163 update for Microsoft Word 2013 RT is available via <a href=“http://go.microsoft.com/fwlink/?linkid=21130” target=“_self”>Windows Update</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.<br /><br />To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>Click <span>Control Panel</span>, click <span>System and Security</span>, click <span>Windows Update</span>, and then under “See also,” click <span>Installed updates</span> and select from the list of updates.</td></tr><tr><td><span>File information</span></td><td>See the file information section of the related KB article. </td></tr></table></div><h4>Microsoft SharePoint Server 2007 (all editions) and Windows SharePoint Services 3.0 (all version)</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For Microsoft SharePoint Server 2007 (32-bit editions) and Microsoft Windows SharePoint Services 3.0 (32-bit versions):<br /><span>sts2007-kb2881068-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft SharePoint Server 2007 (64-bit editions) and Microsoft Windows SharePoint Services 3.0 (64-bit versions):<br /><span>sts2007-kb2881068-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.<br /><br />To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>This security update cannot be removed.</td></tr><tr><td><span>File Information</span></td><td>See the file information section of the related KB article. </td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft SharePoint Server 2010 (all editions) and SharePoint Foundation 2010 (all versions) </h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For Microsoft SharePoint Server 2010 and Microsoft SharePoint Foundation 2010:<br /><span>wssloc2010-kb2956208-fullfile-x64-glb.exe</span></td></tr><tr><td></td><td>For Word Automation Services on supported editions of Microsoft SharePoint Server 2010 Service Pack 2:<br /><span>wdsrv2010-kb2956136-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.<br /><br />To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>This security update cannot be removed.</td></tr><tr><td><span>File Information</span></td><td>See the file information section of the related KB article. </td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft SharePoint Server 2013 (all editions) and SharePoint Foundation 2013 (all versions)</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For supported editions of Microsoft SharePoint Server 2013:<br /><span>acsrvloc2013-kb2956180-fullfile-x64-glb.exe<br />coreserverloc2013-kb2956153-fullfile-x64-glb.exe<br />eduloc2013-kb2760554-fullfile-x64-glb.exe<br />ifsloc2013-kb2880473-fullfile-x64-glb.exe<br />lpsrvloc2013-kb2737989-fullfile-x64-glb.exe<br />ppsmaloc2013-kb2881078-fullfile-x64-glb.exe<br />vsrvloc2013-kb2956181-fullfile-x64-glb.exe<br />wasrvloc2013-kb2760361-fullfile-x64-glb.exe <br />wdsrvloc2013-kb2920731-fullfile-x64-glb.exe<br />xlsrvloc2013-kb2956143-fullfile-x64-glb.exe</span></td></tr><tr><td></td><td>For Microsoft SharePoint Server 2013 and Microsoft SharePoint Foundation 2013:<br /><span>smsloc2013-kb2760508-fullfile-x64-glb.exe<br />sts2013-kb2956175-fullfile-x64-glb.exe<br />wssloc2013-kb2956183-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.<br /><br />To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>This security update cannot be removed.</td></tr><tr><td><span>File Information</span></td><td>See the file information section of the related KB article. </td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft Office Web Apps 2010 (all versions)</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For Microsoft Office Web Apps 2010 Service Pack 2:<br /><span>wacloc2010-kb2956069-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.<br /><br />To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>This security update cannot be removed.</td></tr><tr><td><span>File Information</span></td><td>See the file information section of the related KB article. </td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft Office Web Apps 2013 (all versions)</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For all supported editions of Microsoft Office Web Apps Server 2013 Service Pack 2:<br /><span>wacserver2013-kb2956158-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.<br /><br />To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>This security update cannot be removed.</td></tr><tr><td><span>File Information</span></td><td>See the file information section of the related KB article. </td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div></div><br /></span></div></div></div><a></a></div><h2>FILE INFORMATION</h2><div><div><div><div><span><span></span></span><span><span>File hash information</span></span></div><div><span><div><div><table><tr><th>File name</th><th>SHA1 hash</th><th>SHA256 hash</th></tr><tr><td>excel2007-kb2956103-fullfile-x86-glb.exe</td><td>52D6EB38268F1E1EDABE20D5C7851C4AE8890D34</td><td>2E010CE7BBAA5D102C77082DBBFD253B9687AFE72EBED1244DF3CD250ABD0F51</td></tr><tr><td>excel2007-kb2956103-fullfile-x86-glb.exe</td><td>52D6EB38268F1E1EDABE20D5C7851C4AE8890D34</td><td>2E010CE7BBAA5D102C77082DBBFD253B9687AFE72EBED1244DF3CD250ABD0F51</td></tr><tr><td>excel2007-kb2956103-fullfile-x86-glb.exe</td><td>65E0953C05F1B6B2EB2CD66A23AD723D05BDFADB</td><td>664B77210E9D4DDE11B4C3D113C6AC1254B25D6E4192ED66845CC51E1F0C8C13</td></tr><tr><td>excel2007-kb2956103-fullfile-x86-glb.exe</td><td>65E0953C05F1B6B2EB2CD66A23AD723D05BDFADB</td><td>664B77210E9D4DDE11B4C3D113C6AC1254B25D6E4192ED66845CC51E1F0C8C13</td></tr><tr><td>excel2010-kb2956142-fullfile-x64-glb.exe</td><td>450AEA85975F89631126B8907F28015AD7A2E36F</td><td>E71131C62CD1144FE395942065022B0ED440A846D08A16F9AEF17764E7B7E755</td></tr><tr><td>excel2010-kb2956142-fullfile-x64-glb.exe</td><td>97AE226475C83C0958495CC316FE2DF74DB52F57</td><td>D669B49922C9E01B680BCFDB01543BF63CBF8834DC6A75AF8A76051862EF7508</td></tr><tr><td>excel2010-kb2956142-fullfile-x86-glb.exe</td><td>4C53BEB76687E1A0E654153B78BF6ACA25ABFB65</td><td>B8ACF83D6B292006B63832F4D9E4444B666A6DBA6704DE9275801812649B1AEC</td></tr><tr><td>excel2010-kb2956142-fullfile-x86-glb.exe</td><td>76442D599DA3CF83D87F774E4D287113F4489264</td><td>7D5ED105F8B5DF790A626BA05FDB77790236B436F5CC1892A8741CA235C35A9A</td></tr><tr><td>kb24286772010-kb2956058-fullfile-x64-glb.exe</td><td>8F95264F21BFB3FFD7C15AF264D5461305A85210</td><td>5F1D0B07B63DC4C311A6CADA97F0F49F1A2DC8598E666B531882FA75267A5B76</td></tr><tr><td>kb24286772010-kb2956058-fullfile-x64-glb.exe</td><td>8F95264F21BFB3FFD7C15AF264D5461305A85210</td><td>5F1D0B07B63DC4C311A6CADA97F0F49F1A2DC8598E666B531882FA75267A5B76</td></tr><tr><td>kb24286772010-kb2956058-fullfile-x86-glb.exe</td><td>9B2EAD8AAE7327C00E2BDC8DE4CA5821E3E061E9</td><td>D44488F8DF16BD0136EB6F2D5B7F5B37B7FBDE1B7FEF4FA7FFB40B62BB2AC1B9</td></tr><tr><td>kb24286772010-kb2956058-fullfile-x86-glb.exe</td><td>9B2EAD8AAE7327C00E2BDC8DE4CA5821E3E061E9</td><td>D44488F8DF16BD0136EB6F2D5B7F5B37B7FBDE1B7FEF4FA7FFB40B62BB2AC1B9</td></tr><tr><td>kb24286772010-kb2956138-fullfile-x64-glb.exe</td><td>3E4B143923B0B6C34AC253E524685E64F41A5A95</td><td>C5E01DCA9FBFDC4AE47D0E0E5E4A40F4A62DA490DF63D62D9A26A5A553C2583B</td></tr><tr><td>kb24286772010-kb2956138-fullfile-x64-glb.exe</td><td>3E4B143923B0B6C34AC253E524685E64F41A5A95</td><td>C5E01DCA9FBFDC4AE47D0E0E5E4A40F4A62DA490DF63D62D9A26A5A553C2583B</td></tr><tr><td>kb24286772010-kb2956138-fullfile-x64-glb.exe</td><td>C6E51C8FC2B01221CAE731B8C4205EF91C3375C2</td><td>5A4751635BB55156B4289C7B74D064538F2954AE0D991D6D956B14AC8A1585C6</td></tr><tr><td>kb24286772010-kb2956138-fullfile-x64-glb.exe</td><td>C6E51C8FC2B01221CAE731B8C4205EF91C3375C2</td><td>5A4751635BB55156B4289C7B74D064538F2954AE0D991D6D956B14AC8A1585C6</td></tr><tr><td>kb24286772010-kb2956138-fullfile-x86-glb.exe</td><td>3FD6C904D4F24FDB7A43069F63C63CCAD32A125C</td><td>AE716B7183905E9C96F77844A63790958533C0EFFA93264D9EDAD9BFF3CB79B4</td></tr><tr><td>kb24286772010-kb2956138-fullfile-x86-glb.exe</td><td>3FD6C904D4F24FDB7A43069F63C63CCAD32A125C</td><td>AE716B7183905E9C96F77844A63790958533C0EFFA93264D9EDAD9BFF3CB79B4</td></tr><tr><td>kb24286772010-kb2956138-fullfile-x86-glb.exe</td><td>573C16678D00417D9C4831F8243EA023B2171909</td><td>8D4D8CAA550AF3C46319FF3C2E1FA1F8FFD97738A4DC9C32CBA21201B359933F</td></tr><tr><td>kb24286772010-kb2956138-fullfile-x86-glb.exe</td><td>573C16678D00417D9C4831F8243EA023B2171909</td><td>8D4D8CAA550AF3C46319FF3C2E1FA1F8FFD97738A4DC9C32CBA21201B359933F</td></tr><tr><td>mso2007-kb2984939-fullfile-x86-glb.exe</td><td>303C4642E99062C3DB1DE72E696123FDDE0748BB</td><td>8CD0CE9D40A00F1AAE9F662F870CD603697672B7C7F6E9684F4E4915EBEFC2D0</td></tr><tr><td>mso2007-kb2984939-fullfile-x86-glb.exe</td><td>9386E45246BE01CD9F511AB540CA117085AA6730</td><td>ACE0EB16FD6CEB920E1CCA3E123C33134A0B6DD4EBA64CE70D59AF92299C4FE6</td></tr><tr><td>mso2010-kb2956191-fullfile-x64-glb.exe</td><td>721F6A4A09B52A2D7DB61015D156DE87F9A74C64</td><td>0E14D6D8F48BE6250EF613275221B5A6C7897E257853A78BA59663BB9C41850E</td></tr><tr><td>mso2010-kb2956191-fullfile-x86-glb.exe</td><td>B0DEB038ADDB2D23CC0DC17AC10A95CD975CCB49</td><td>6918D5214C0C8CFF44774B7E93D201B812059E1366CB25C9CF4D827B88BD6CF8</td></tr><tr><td>msoloc2010-kb2956076-fullfile-x64-glb.exe</td><td>F20A3D4D976A9B692636DD742A1A2E62AB5AC14B</td><td>5E13A8E91CDA7BA568E943C579C219C8FC847C6DF45D6E7512D136BDDBE5B9F7</td></tr><tr><td>msoloc2010-kb2956076-fullfile-x86-glb.exe</td><td>A68B268E98EAF4E3627BFEF2F37247CE1B5906EF</td><td>1965C3DCF263B10A45084B4C5F21C3F66D3957D2325E9231A2531D1A7AECA8F9</td></tr><tr><td>oart2010-kb2883100-fullfile-x64-glb.exe</td><td>255E7C05E6DAB7EB324A2E08F05C8F8976AF9398</td><td>F3B7FA6E7A8953C4C7E26EC5EE2E1B041796224307BD4F9974CA40BBF406A219</td></tr><tr><td>oart2010-kb2883100-fullfile-x86-glb.exe</td><td>7EDCC8C8E4F8891AACF9BFA3BC8C5303FC348D6B</td><td>16702FF9E308112819904913435559D025773B612A791B53C64ECA6B75F661C9</td></tr><tr><td>oartconv2010-kb2889839-fullfile-x64-glb.exe</td><td>5A051B52BC1F017312F0B0A973825C7280B19658</td><td>9057174C544A7FB716A125A7CF6196629AC4E38B2118D25065B477EAFC9A534B</td></tr><tr><td>oartconv2010-kb2889839-fullfile-x86-glb.exe</td><td>A28D00E7CA6AB95D0FC1681A12F300C0CBA7455F</td><td>B6E99EDB6A55D0D5B0FE02002AB0EB822B8765F9320BF7CEEAFE485306174713</td></tr><tr><td>powerpoint2007-kb2899580-fullfile-x86-glb.exe</td><td>F196130DFC2427A8D7B22B5137F40EF84C8AF204</td><td>084E46BC9DCD6B9DB63907C5283E9917948D936311321A46238CF67898188B83</td></tr><tr><td>powerpoint2007-kb2899580-fullfile-x86-glb.exe</td><td>FC933AEA7EABA8EFC12B522AD95FCD4B92BF5018</td><td>30467544F52CC2E14BA21F43CAC6C9B4EA26000E24E8F67D5F71358B1FAC6E70</td></tr><tr><td>powerpoint2010-kb2899584-fullfile-x64-glb.exe</td><td>CB4FE59FE8D8C9A82ED30332ECA8591BFB60B57E</td><td>7D018B7140E22BCDD55BC05282A7F466E629F241C633A6E1858626851848E225</td></tr><tr><td>powerpoint2010-kb2899584-fullfile-x86-glb.exe</td><td>37F432F10463300472312EBE5D9B6C8220935808</td><td>0D46F11213CE3E4B686F9F60CA42832D0C2A033B7A795866CCB309769DAE2B79</td></tr><tr><td>powerpoint2010-kb2956190-fullfile-x64-glb.exe</td><td>0805BBD90664B0FF573CA4DC5AA7824AC08792E3</td><td>776C74F5F20D13DBE0A2FD280BA4C21D797E83DB9D110CDF6D9F89C6CFB193F5</td></tr><tr><td>powerpoint2010-kb2956190-fullfile-x86-glb.exe</td><td>45FEA5D6A43C9AB6E2EC434B169F73D6FCB3D6CE</td><td>9279521D70C67A88C28FC4B1C9B4F07361F2F22A109CA96D3B3D2975FD25BDA9</td></tr><tr><td>powerpointloc2010-kb2920812-fullfile-x64-glb.exe</td><td>A6390B7C318C47CA576348FD46E69D2FEDF4C494</td><td>5FC4406FFD8F23655AC73BE6AFE13CF4B83E55A6908BCBDAF7E30DFEEF9E8FA1</td></tr><tr><td>powerpointloc2010-kb2920812-fullfile-x86-glb.exe</td><td>4C74636B38C1F14DA8E22EBB8FEEA29043CE2718</td><td>C6565042371E612D72FD9B809040D9C416CDCF870C46FEABF8CCA8CD3BEB139D</td></tr><tr><td>sts2007-kb2881068-fullfile-x64-glb.exe</td><td>E17A457590C999B1E6CC6EA4414F6759EE97835B</td><td>6E0D52183FA49B4177C9153D0D166EFDE16659CE0A99C8FDD8DB8C4253C545C8</td></tr><tr><td>sts2007-kb2881068-fullfile-x86-glb.exe</td><td>57B6076B289311EFB18CC511201DE6AB363F1244</td><td>0FEE6EF7E23020CE67C3116B386430A594B986157459707919254977E937D869</td></tr><tr><td>wac2010-kb2956140-fullfile-x64-glb.exe</td><td>988451D458DF489FF140D24034BCF5560B591549</td><td>BB7DC4FE48C9E2BFA07256EC77765D31F7E6C1F047876C0D95CD7223340A13A8</td></tr><tr><td>wac2010-kb2956140-fullfile-x64-glb.exe</td><td>988451D458DF489FF140D24034BCF5560B591549</td><td>BB7DC4FE48C9E2BFA07256EC77765D31F7E6C1F047876C0D95CD7223340A13A8</td></tr><tr><td>wdsrv2010-kb2956136-fullfile-x64-glb.exe</td><td>ECD72528E690F2DD5E0658FD351BCB60741FED74</td><td>813CCB772142AD5A3236A3E653FA32CD5C2A145B9DD0724C5AB81E560E28193A</td></tr><tr><td>wdsrv2010-kb2956136-fullfile-x64-glb.exe</td><td>ECD72528E690F2DD5E0658FD351BCB60741FED74</td><td>813CCB772142AD5A3236A3E653FA32CD5C2A145B9DD0724C5AB81E560E28193A</td></tr><tr><td>word2007-kb2956109-fullfile-x86-glb.exe</td><td>65F0CD9C8742DAAC8141CEB179756CE33A79D0ED</td><td>63A41640AFEA0B8B0D03CE7F24D7D2976A357FCD4C536C1E7987EC599451F395</td></tr><tr><td>word2007-kb2956109-fullfile-x86-glb.exe</td><td>65F0CD9C8742DAAC8141CEB179756CE33A79D0ED</td><td>63A41640AFEA0B8B0D03CE7F24D7D2976A357FCD4C536C1E7987EC599451F395</td></tr><tr><td>word2007-kb2956109-fullfile-x86-glb.exe</td><td>87EEA83ED0DFB5CACE3B4351F1E7619A5BD95188</td><td>206D63F05165B66982B835CA7DFCFFFD420B2101095297A5FDAD1B70D986ACCE</td></tr><tr><td>word2007-kb2956109-fullfile-x86-glb.exe</td><td>87EEA83ED0DFB5CACE3B4351F1E7619A5BD95188</td><td>206D63F05165B66982B835CA7DFCFFFD420B2101095297A5FDAD1B70D986ACCE</td></tr><tr><td>word2010-kb2956066-fullfile-x64-glb.exe</td><td>C14FB12EEC71C52412372C9163FF7B3441CD96DF</td><td>5157F2CCA635601397AB9C485170B8CB8F869A8ECB97F01AD69579F4277CED4D</td></tr><tr><td>word2010-kb2956066-fullfile-x64-glb.exe</td><td>C14FB12EEC71C52412372C9163FF7B3441CD96DF</td><td>5157F2CCA635601397AB9C485170B8CB8F869A8ECB97F01AD69579F4277CED4D</td></tr><tr><td>word2010-kb2956066-fullfile-x86-glb.exe</td><td>DAAC3BC79D370CF725193318CEA25BF837E802C1</td><td>290BDB6D2F9EB4853CB40F77140D166C001B8A2CF54ACA483AD95D1F1A30D7D7</td></tr><tr><td>word2010-kb2956066-fullfile-x86-glb.exe</td><td>DAAC3BC79D370CF725193318CEA25BF837E802C1</td><td>290BDB6D2F9EB4853CB40F77140D166C001B8A2CF54ACA483AD95D1F1A30D7D7</td></tr><tr><td>word2010-kb2956139-fullfile-x64-glb.exe</td><td>41B99328E224E2DF12E3EC839227C879D6309472</td><td>D21322C5D5B8FE17D1E61EE8D2F37FFD55F1EC3D000576B49D312F812E07F9DB</td></tr><tr><td>word2010-kb2956139-fullfile-x64-glb.exe</td><td>41B99328E224E2DF12E3EC839227C879D6309472</td><td>D21322C5D5B8FE17D1E61EE8D2F37FFD55F1EC3D000576B49D312F812E07F9DB</td></tr><tr><td>word2010-kb2956139-fullfile-x86-glb.exe</td><td>E9F1B0FB2BBCECE26EF3A1750CCBAFDEC2D331B3</td><td>67E03C4A43CC433ED396AF5DA49473F46C228B46D1030EA8860DEFDBCF6A3FE2</td></tr><tr><td>word2010-kb2956139-fullfile-x86-glb.exe</td><td>E9F1B0FB2BBCECE26EF3A1750CCBAFDEC2D331B3</td><td>67E03C4A43CC433ED396AF5DA49473F46C228B46D1030EA8860DEFDBCF6A3FE2</td></tr><tr><td>wordconv2007-kb2956107-fullfile-x86-glb.exe</td><td>271779B09C30A38055E9765DBBE00EF4B9DAA552</td><td>57A032AB6A23529AB36284B820097F3B569B349E94CA453EDBAF6CDC492E8525</td></tr><tr><td>xlconv2007-kb2956106-fullfile-x86-glb.exe</td><td>918027D8431B79325DD41159425FC6580E1518BC</td><td>D7C53D74C661FE0B6C52948BF446F079DF9E085FE4764C56D4BBCA85CBE1D9AC</td></tr><tr><td>xlview2007-kb2956189-fullfile-x86-glb.exe</td><td>6EA81AB8444F9BC7005E39DFBA4A3DEBFA5D3B53</td><td>2312F0272BD6DF21F1D5EBE77929645712BE19BDC7F1AA6E211672613B91F17C</td></tr></table></div></div><br /></span></div></div></div></div></body></html>

Related

kaspersky 1
nessus 1
openvas 11
securityvulns 1
prion 5
cve 5
checkpoint_advisories 5
symantec 5
exploitpack 1
zdt 1
zdi 1
exploitdb 1
myhack58 1
kaspersky
kaspersky
KLA10469 Multiple vulnerabilities in Microsoft products
2015-03-10 00:00:00
nessus
nessus
MS15-022: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3038999)
2015-03-11 00:00:00
openvas
openvas
Microsoft Office PowerPoint Remote Code Execution Vulnerabilities (3038999)
2015-03-11 00:00:00
Microsoft Office Excel Viewer Remote Code Execution Vulnerabilities (3038999)
2015-03-11 00:00:00
Microsoft Office Excel Remote Code Execution Vulnerabilities (3038999)
2015-03-11 00:00:00
securityvulns
securityvulns
Microsoft Office and Sharepoint multiple security vulnerabilities
2015-04-16 00:00:00
prion
prion
Memory corruption
2015-03-11 10:59:00
Cross site scripting
2015-03-11 10:59:00
Cross site scripting
2015-03-11 10:59:00
cve
cve
CVE-2015-1636
2015-03-11 10:59:00
CVE-2015-0086
2015-03-11 10:59:00
CVE-2015-1633
2015-03-11 10:59:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office Memory Corruption (MS15-022; CVE-2015-0086)
2015-03-10 00:00:00
Microsoft SharePoint User Name XSS (MS15-022; CVE-2015-1633)
2015-03-10 00:00:00
Microsoft Word Local Zone Remote Code Execution (MS15-022; CVE-2015-0097)
2015-03-10 00:00:00
symantec
symantec
Microsoft Office CVE-2015-0086 Memory Corruption Vulnerability
2015-03-10 00:00:00
Microsoft SharePoint CVE-2015-1636 Cross Site Scripting Vulnerability
2015-03-10 00:00:00
Microsoft Word CVE-2015-0097 Memory Corruption Vulnerability
2015-03-10 00:00:00
exploitpack
exploitpack
Microsoft Word - Local Machine Zone Code Execution (MS15-022)
2015-07-20 00:00:00
zdt
zdt
Microsoft Word Local Machine Zone Remote Code Execution Vulnerability
2015-07-21 00:00:00
zdi
zdi
Microsoft Word Format Tag Transposition Use-After-Free Remote Code Execution Vulnerability
2015-03-12 00:00:00
exploitdb
exploitdb
Microsoft Word - Local Machine Zone Code Execution (MS15-022)
2015-07-20 00:00:00
myhack58
myhack58
The macro perspective of the office vulnerability, 2010-2018-a vulnerability warning-the black bar safety net
2019-06-13 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON
Related for KB3038999
kaspersky1nessus1openvas11securityvulns1prion5cve5checkpoint_advisories5symantec5exploitpack1zdt1zdi1exploitdb1myhack581