Lucene search

K
mskbMicrosoftKB4011276
HistoryApr 13, 2020 - 12:00 a.m.

Description of the security update for 2007 Microsoft Office Suite: November 14, 2017

2020-04-1300:00:00
Microsoft
support.microsoft.com
239

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.8

Confidence

High

EPSS

0.974

Percentile

99.9%

Description of the security update for 2007 Microsoft Office Suite: November 14, 2017

Summary

This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2017-11882.

Note To apply this security update, you must have the release version of Service Pack 3 for the 2007 Microsoft Office Suite installed on the computer.

How to get and install the update

Method 1: Microsoft Update

This update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Method 3: Microsoft Download Center

You can get the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

More Information

Security update deployment information

For deployment information about this update, see security update deployment information: November 14, 2017.

Security update replacement information

This security update doesn’t replace any previously released update.

File hash information

Package Name Package Hash SHA 1 Package Hash SHA 2
eqnedt322007-kb4011276-fullfile-x86-en-us.exe 5BDF63F270C8389181BCA75D2C5CDED6E5B58978 9AE1D3A1109C731EE1C730A6864D9F0F944BF14404C31943619EFECC2E1B1BE3
eqnedt322007-kb4011276-fullfile-x86-zh-cn.exe E82D11355EF17642A56A10C7216BFD33B697321C C8B36716E0E56807517A96DFAC8235F0B76EF5AC77F5A7EF4B38011EB90EE796

File information

The dates and the times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight-saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

For all supported x86-based versions of 2007 Microsoft Office Suite

File name File version File size Date Time
Eqnedt32.exe_1033 2017.8.14.0 552,680 26-Oct-2017 07:29
Eqnedt32.exe_2052 2017.8.14.0 552,680 26-Oct-2017 07:29

How to get help and support for this security update

Help for installing updates: Windows Update FAQ

Security solutions for IT professionals: Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International SupportPropose a feature or provide feedback on Office: Office User Voice portal

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.8

Confidence

High

EPSS

0.974

Percentile

99.9%