Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
Microsoft Security Advisory: Vulnerability in the Microsoft Office Web Components control could allow remote code execution
Article ID: 973472 - View products that this article applies to.
Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, visit the following Microsoft Web site:
Microsoft has completed the investigation into a public report of this vulnerability. We have issued security bulletin MS09-043
(http://go.microsoft.com/fwlink/?LinkID=128110)to address this issue. For more information about this issue, including download links for an available security update, please review security bulletin MS09-043
(http://go.microsoft.com/fwlink/?LinkID=128110). The vulnerability that is addressed is the Microsoft Office Web Components Control Vulnerability - CVE-2009-1136.
For more information about how to obtain the security update release that resolves this issue, click the following article number to view the article in the Microsoft Knowledge Base:
957638For more information about security bulletin MS09-043, visit the following Microsoft Web page:
(http://support.microsoft.com/kb/957638/ )MS09-043: Cumulative Security Update for ActiveX Kill Bits
http://go.microsoft.com/fwlink/?LinkID=128110For more information about the Microsoft Office Web Components Control Vulnerability, visit the following Common Vulnerabilities and Exposures Web page:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1136Microsoft provides third-party contact information to help you find technical support. This contact information may change without notice. Microsoft does not guarantee the accuracy of this third-party contact information.
Article ID: 973472 - Last Review: August 11, 2009 - Revision: 4.1