MS16-004: Description of the security update for Excel 2013: January 12, 2016

Applies to: Microsoft Office 2013 Service Pack 1Excel 2013


This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Microsoft Office file. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS16-004.

Note To apply this security update, you must have the release version of Service Pack 1 for Office 2013 installed on the computer.

For a complete list of affected versions of Microsoft Office software, see KB 3124585.

Improvements and fixes

  • Improves grid display performance when you enter data and formulas in the cells of split or freeze panes in Excel 2013.
  • This update also contains fixes for the following nonsecurity issues:
    • The Font.TintAndShade property doesn't work in Excel object model.
    • When you try to close a workbook that's opened by a modal userform, the workbook that contains the macro and the userform is closed unexpectedly.

How to obtain and install the update

Method 1: Microsoft Update

This update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Note For Microsoft Office 2013 RT Service Pack 1, this update is available from Microsoft Update only.

Method 2: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

More Information

Security update deployment information

For deployment information about this update, see Microsoft Knowledge Base article 3124585.

Security update replacement information

This security update replaces previously released update 3101499.