MS15-033: Description of the security update for Office 2010: April 14, 2015

Applies to: Microsoft Office 2010 Service Pack 2

Summary


This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file in an affected version of Office. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS15-033.

Note To apply this security update, you must have Service Pack 2 for Office 2010 installed on the computer.

To resolve the vulnerabilities, you have to apply the following updates:
  • 2965236 MS15-033: Description of the security update for Office 2010: April 14, 2015
  • 2553428 MS15-033: Description of the security update for Word 2010: April 14, 2015

Improvements and fixes

This update also contains fixes for the following nonsecurity issues:
  • When you move an image to an unprotected section of a Word 2010 document that contains a protected section, Word 2010 may crash.
  • Files that have an underscore (_) as a prefix in a directory are deleted incorrectly. This issue occurs after you create a Word 2010 document in a Universal Naming Convention (UNC) folder share and the document is based on a template whose name contains a number sign (#).

How to obtain and install the update


Method 1: Microsoft Update

This update is available through Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Method 2: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. To install the update, follow the installation instructions on the download page.

Download Download 32-bit (KB2965236)
Download Download 64-bit (KB2965236)

More Information