MS14-022: Description of the security update for SharePoint Server 2013 (coreserverloc): May 13, 2014

Applies to: SharePoint Server 2013


This security update resolves vulnerabilities in Microsoft Office server and productivity software that could allow remote code execution if an authenticated attacker sends specially crafted page content to a target SharePoint server.


Microsoft has released security bulletin MS14-022. To learn more about this security bulletin:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals:
TechNet security support and troubleshooting

Help protect your Windows-based computer from viruses and malware: Virus and Security Solution Center

Local support according to your country:
International support

Known issues with this security update

After you install this security update on all SharePoint servers, you have to run the PSconfig tool to complete the installation process. For more information about how to use the PSconfig tool, go to the following Microsoft TechNet webpage: 

Prerequisites to apply this security update

There are no prerequisites for installing this security update.

Restart information

You may have to restart the computer after you install this security update.

In some cases, this update does not require a restart. If the required files are being used, this update does require a restart. If this behavior occurs, a message is displayed that advises you to restart the computer.

To reduce the possibility that a restart will be required, stop all affected services and exit all applications that may use the affected files before you install this security update.

For more information, see Why you may be prompted to restart your computer after you install a security update on a Windows-based computer .

Security update replacement information

This security update replaces the following security update:
2850058 MS13-100: Description of the security update for SharePoint Server 2013 (coreserverloc): December 10, 2013

Removal information

You cannot remove this security update.