MS15-033: Vulnerabilities in Office could allow remote code execution: April 14, 2015

<html><body><p>Resolves vulnerabilities in Office that could allow remote code execution if a user opens a specially crafted Office file.</p><h2>Summary</h2><div>This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user. Customers whose accounts are configured to have fewer user rights on the system could be less affected than those who operate with administrative user rights. </div><h2>Introduction</h2><div>Microsoft has released security bulletin MS15-033. To learn more about this security bulletin: <ul><li>Home users:<br /><div><a href=“https://www.microsoft.com/security/pc-security/updates.aspx” target=“_self”>https://www.microsoft.com/security/pc-security/updates.aspx</a></div><span>Skip the details</span> - Download the updates for your home computer or laptop from the Microsoft Update website now: <div><a href=“https://www.update.microsoft.com/microsoftupdate/” target=“_self”>https://update.microsoft.com/microsoftupdate/</a></div></li><li>IT professionals:<br /><div><a href=“https://technet.microsoft.com/library/security/ms15-033” target=“_self”>https://technet.microsoft.com/library/security/MS15-033</a></div></li></ul><h3>How to obtain help and support for this security update</h3>Help installing updates:<br /><a href=“https://support.microsoft.com/ph/6527” target=“_self”>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals:<br /><a href=“https://technet.microsoft.com/security/bb980617.aspx” target=“_self”>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your Windows-based computer from viruses and malware:<br /><a href=“https://support.microsoft.com/contactus/cu_sc_virsec_master” target=“_self”>Virus Solution and Security Center</a><br /><br />Local support according to your country:<br /><a href=“https://support.microsoft.com/common/international.aspx” target=“_self”>International support</a><br /><br /></div><h2>More Information</h2><div><h3>Known issues and additional information about this security update</h3>The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link.<br /><br /><ul><li><a href=“https://support.microsoft.com/en-us/help/3051737” target=“_self”>KB 3051737 MS15-033: Description of the Microsoft Office for Mac 2011 14.4.9 Update: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2965289” target=“_self”>KB 2965289 MS15-033: Description of the security update for Word Viewer: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2965284” target=“_self”>KB 2965284 MS15-033: Description of the security update for Word 2007 SP3: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2965238” target=“_self”>KB 2965238 MS15-033: Description of the security update for SharePoint Server 2010 Office Web Apps: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2965236” target=“_self”>KB 2965236 MS15-033: Description of the security update for Office 2010: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2965224” target=“_self”>KB 2965224 MS15-033: Description of the security update for Word 2013: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2965306” target=“_self”>KB 2965306 MS15-033: Description of the security update for Office Web Apps Server 2013: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2965215” target=“_self”>KB 2965215 MS15-033: Description of the security update for SharePoint Server 2013 Word Automation Services: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2965210” target=“_self”>KB 2965210 MS15-033: Description of the security update for Office Compatibility Pack SP3: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/3055707” target=“_self”>KB 3055707 MS15-033: Description of the update for Microsoft Outlook for Mac for Office 365: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2553428” target=“_self”>KB 2553428 MS15-033: Description of the security update for Word 2010: April 14, 2015</a></li><li><a href=“https://support.microsoft.com/en-us/help/2553164” target=“_self”>KB 2553164 MS15-033: Description of the security update for SharePoint Server 2010: April 14, 2015</a></li></ul><br /><div><div><div><span><span></span></span><span><span>Security update deployment information</span></span></div><div><span><div><h4>2007 Microsoft Office system (all editions) and other software</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For 2007 Microsoft Office Service Pack 3:<br /><span>vbe62007-kb2687409-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For 2007 Microsoft Word Service Pack 3:<br /><span>word2007-kb2965284-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Word Viewer:<br /><span>office-kb2965289-fullfile-enu.exe</span></td></tr><tr><td></td><td>For Microsoft Office Compatibility Pack:<br /><span>wordconv2007-kb2965210-fullfile-x86-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a></td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart.<br /><br />To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>Use <span>Add or Remove Programs</span> item in <span>Control Panel</span>.</td></tr><tr><td><span>File information</span></td><td>See the <a href=“#fileinfo” target>file information</a> section</td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft Office 2010 (all editions)</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For Microsoft Office 2010 Service Pack 2 (32-bit editions):<br /><span>kb24286772010-kb2965236-fullfile-x86-glb.exe<br />vbe72010-kb2687419-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Office 2010 Service Pack 2 (64-bit editions) <br /><span>kb24286772010-kb2965236-fullfile-x64-glb.exe<br />vbe72010-kb2687419-fullfile-x64-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Word 2010 Service Pack 2 (32-bit editions)<br /><span>wordloc2010-kb2553428-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For Microsoft Word 2010 Service Pack 2 (64-bit editions)<br /><span>wordloc2010-kb2553428-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a></td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart.<br /><br />To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>Use <span>Add or Remove Programs</span> item in <span>Control Panel</span>.</td></tr><tr><td><span>File information</span></td><td>See the <a href=“#fileinfo” target>file information</a> section</td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft Office 2013 (all editions)</h4><span>Reference table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td><span>Security update file name</span></td><td>For supported editions of Microsoft Office 2013 (32-bit editions)<br /><span>vbe72013-kb2752034-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For supported editions of Microsoft Office 2013 (64-bit editions)<br /><span>vbe72013-kb2752034-fullfile-x64-glb.exe</span></td></tr><tr><td></td><td>For supported editions of Microsoft Word 2013 (32-bit editions)<br /><span>word2013-kb2965224-fullfile-x86-glb.exe</span></td></tr><tr><td></td><td>For supported editions of Microsoft Word 2013 (64-bit editions)<br /><span>word2013-kb2965224-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a></td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart.<br /><br />To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>Use <span>Add or Remove Programs</span> item in <span>Control Panel</span>.</td></tr><tr><td><span>File information</span></td><td>See the <a href=“#fileinfo” target>file information</a> section</td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft Office 2013 RT (all editions)</h4><div><table><tr><td><span>Deployment</span></td><td>The 2965224 update for Microsoft Word 2013 RT is available through <a href=“http://go.microsoft.com/fwlink/?linkid=21130” target=“_self”>Windows Update</a>.</td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart.<br /><br />To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>Click <span>Control Panel</span>, click <span>System and Security</span>, click <span>Windows Update</span>, and under <strong>See also</strong>, click <span>Installed updates</span>, and then select from the list of updates.</td></tr><tr><td><span>File information</span></td><td>See the <a href=“#fileinfo” target>file information</a> section</td></tr></table></div><h4>Office for Mac 2011</h4><span>Prerequisites<br /><br /></span>To install this update, you must have a computer that is running Mac OS X version 10.5.8 or a later version on an Intel processor, and user accounts must have administrative credentials. <br /><br /><h4>Outlook for Mac for Office 365 </h4><span>Prerequisites</span><br /><br />You must be running OS X Yosemite 10.10 or a later version. <br /><h4>Microsoft SharePoint Server 2010 (all editions)</h4><span>Reference Table</span><br /><br />The following table contains the security update information for this software.<div><table><tr><td><span>Security update file name</span></td><td>For Word Automation Services on supported editions of Microsoft SharePoint Server 2010 Service Pack 2:<br /><span>wdsrvloc2010-kb2553164-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a></td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart.<br /><br />To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>This security update cannot be removed.</td></tr><tr><td><span>File Information</span></td><td>See the <a href=“#fileinfo” target>file information</a> section</td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft SharePoint Server 2013 (all editions)</h4><span>Reference Table</span><br /><br />The following table contains the security update information for this software.<div><table><tr><td><span>Security update file name</span></td><td>For Word Automation Services on supported editions of Microsoft SharePoint Server 2013:<br /><span>wdsrvloc2013-kb2965215-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a></td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart.<br /><br />To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>This security update cannot be removed.</td></tr><tr><td><span>File Information</span></td><td>See the <a href=“#fileinfo” target>file information</a> section</td></tr><tr><td><span>Registry key verification</span></td><td>Not  applicable</td></tr></table></div><h4>Microsoft Office Web Apps 2010 (all versions)</h4><span>Reference Table</span><br /><br />The following table contains the security update information for this software. <br /><div><table><tr><td><span>Security update file name</span></td><td>For Microsoft Office Web Apps 2010 Service Pack 2:<br /><span>wacloc2010-kb2965238-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a></td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart.<br /><br />To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>This security update cannot be removed.</td></tr><tr><td><span>File Information</span></td><td>See the <a href=“#fileinfo” target>file information</a> section</td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div><h4>Microsoft Office Web Apps 2013 (all versions)</h4><span>Reference Table</span><br /><br />The following table contains the security update information for this software. <div><table><tr><td><span>Security update file name</span></td><td>For all supported editions of Microsoft Office Web Apps Server 2013 Service Pack 1:<br /><span>wacserver2013-kb2965306-fullfile-x64-glb.exe</span></td></tr><tr><td><span>Installation switches</span></td><td>See <a href=“https://support.microsoft.com/help/912203” target=“_self”>Microsoft Knowledge Base Article 912203</a></td></tr><tr><td><span>Restart requirement</span></td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart.<br /><br />To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see <a href=“https://support.microsoft.com/help/887012” target=“_self”>Microsoft Knowledge Base Article 887012</a>.</td></tr><tr><td><span>Removal information</span></td><td>This security update cannot be removed.</td></tr><tr><td><span>File Information</span></td><td>See the <a href=“#fileinfo” target>file information</a> section</td></tr><tr><td><span>Registry key verification</span></td><td>Not applicable</td></tr></table></div></div><br /></span></div></div></div><a></a></div><h2>FILE INFORMATION</h2><div><div><div><div><span><span></span></span><span><span>File hash information</span></span></div><div><span><div><div><table><tr><th>File name</th><th>SHA1 hash</th><th>SHA256 hash</th></tr><tr><td>wdsrvloc2010-kb2553164-fullfile-x64-glb.exe</td><td>D88B4B2BBA7CFE5CD9FEC47A706F04EFEBD823EB</td><td>36E434C632954A54D37C565438068C4F70DB0C15745E27B3619046C50B3A1400</td></tr><tr><td>wordloc2010-kb2553428-fullfile-x64-glb.exe</td><td>F6C083208DA1CC7F7666DEA0A697010E4F394FB0</td><td>91A170562A2DDD99BB04D785394C371CD6AA7BBBD1BD2230925E7DE8AAE65E8F</td></tr><tr><td>wordloc2010-kb2553428-fullfile-x86-glb.exe</td><td>0A4C090B2EEEF84E4301BA661B010806920B085C</td><td>7FD32D4A972D79D95ABCF958BD126CB3D0F8310EB9CFED3AB905DAFEF2050BC3</td></tr><tr><td>wordconv2007-kb2965210-fullfile-x86-glb.exe</td><td>A14FFBE921A2EE7A1140856F3EC2ACF24D978EED</td><td>2149792B2E36C993A09B565D76D9E9BD7576D794944E6DD7B747823DC9F6321F</td></tr><tr><td>kb24286772010-kb2965236-fullfile-x64-glb.exe</td><td>A83D65B28ECB2E9D119E3DDB6A6D0F15D4E88998</td><td>BEC03DD26C161568E1572E800390315AC9743D6A92AD47D9BECA28FEA78C7521</td></tr><tr><td>kb24286772010-kb2965236-fullfile-x86-glb.exe</td><td>AD1BC734A336F1CEAD087AF0668825D6A8803CD6</td><td>E63F317BABFF4A38A3E3274FA722713B90C2AA6070F45EBB1745AC433C9A969F</td></tr><tr><td>wacloc2010-kb2965238-fullfile-x64-glb.exe</td><td>85E81850227DED768C0D37F60EE86CA897E432A7</td><td>F45B2BF3204E8D01F473F7538A7882AC85DFD6EA6E9035E928CD0F41BAE8DE38</td></tr><tr><td>word2007-kb2965284-fullfile-x86-glb.exe</td><td>46EE57875231E6FCB4C2580D9C319A861BBE2BC0</td><td>59DC2820774BD4194226E357427E75992069955CC98824AF21A2E0EA55C2FAA3</td></tr><tr><td>wdsrvloc2013-kb2965215-fullfile-x64-glb.exe</td><td>C4F844B13E0683AAE5207E4E020DE32AA26CA326</td><td>2A9BC8634AB32409F017F846064B283D34BD77C1A90992F3DBFDABA4F35C1A50</td></tr><tr><td>word2013-kb2965224-fullfile-x64-glb.exe</td><td>588330CEBFA29C177FC45ABABC0C054847790765</td><td>CE34D183A89292AED92FB0B0D1379762931D50040683DCD0F9599DB3B8E298E8</td></tr><tr><td>word2013-kb2965224-fullfile-x86-glb.exe</td><td>D2E17E3AA62413C3C40A21AD950A2641980CA33F</td><td>07AFB182AECFB5448625A5623F13C0ED77CDB3813877AFFE427B9E03EAC399B1</td></tr><tr><td>office-kb2965289-fullfile-enu.exe</td><td>9FE33D9661A610092CA29EC18EB823920D263ECB</td><td>DAD420F24DD53D128A1B00238C4562676A5D3D4A9075D1C1EBB30A1E80A2E930</td></tr><tr><td>wacserver2013-kb2965306-fullfile-x64-glb.exe</td><td>86CAC959E1285D436FEA409B645BCBF32E614007</td><td>9F6AB9837CDE628D112E0AEEB009DFCB969B6AD7E8653D371979480FDB0D587A</td></tr></table></div></div><br /></span></div></div></div></div></body></html>