This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2017-0106 and Microsoft Common Vulnerabilities and Exposures CVE-2017-0204.
Note To apply this security update, you must have the release version of Service Pack 1 for Microsoft Office 2013 installed on the computer.
Improvements and fixes
- Increases the number of retries when trying to connect to a host in Microsoft Outlook 2013. By default, WinHTTP will try six IP addresses (one initial attempt and five retries) when trying to establish a connection to a host. If Outlook 2013 tries to attempt more than six IP addresses, the connection will fail. This is particularly problematic on networks that have intermittent IPv6 connectivity problems. Increasing the number of retries may allow the connection to succeed with IPv4 addresses. To enable this feature, see KB3178716 for more information.
- Resolves an issue in which your email address is added to the To field when you "reply all" to an email message of an Outlook.com account.
- If an Object Model call gets the conversation index of some items in Outlook 2013, Outlook will no longer crash.
- If an appointment is modified by an add-in by calling body.setAsync, the appointment body that is sent will no longer be blank.
- When you forward and an email message that contains attachments in Outlook 2013 and you add attachments, the attachments in the email message will no longer be swapped and become corrupted.
Known issues in this security update
After you install this security update, when you use the Quick Print feature in Outlook to print emails that contain attachments, you receive an error stating the attached files cannot be found.
For more information, go to the following article in the Microsoft Knowledge Base:
Security update replacement information
This security update replaces previously released security update KB3118280.
File hash information
|Package Name||Package Hash SHA 1||Package Hash SHA 2|
For the list of files that cumulative update KB3172519 contains, download the file information for the x86-based update KB3172519 and file information for the x64-based update KB3172519.