MS17-014: Description of the security update for Excel 2013: March 14, 2017


This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS17-014.

Note To apply this security update, you must have the release version of Service Pack 1 for Microsoft Office 2013 installed on the computer.

For a complete list of affected versions of Microsoft Office software, see Microsoft Knowledge Base article KB4013241.

Improvements and fixes

This security update contains improvements and fixes for the following nonsecurity issues:
  • When you save a file that has certain future content created in later versions of Excel in Excel 2013, Excel crashes.
  • Running VBA macros that involve hidden workbooks may be slower in Excel 2013.

    Note To fix this issue, follow the steps in the Registry Information section.
  • When you copy and paste a range data that includes external links cross workbooks in Excel 2013, Excel crashes.
  • When you enable macros in Excel 2013 on touch enabled devices, Excel crashes.
  • When you use the Allow Users to Edit Ranges function to add a user to a range data in Excel 2013, Excel crashes.

How to get and install the update

Method 1: Microsoft Update

Method 2: Microsoft Update Catalog

Method 3: Microsoft Download Center

Registry information

  1. Exit all Microsoft Office applications.
  2. Start Registry Editor:
    • In Windows 10, go to Start, enter regedit in the Search box, and then select regedit.exe in the search results.
    • In Windows 8 or Windows 8.1, move your mouse to the upper-right corner, select Search, enter regedit in the search text box, and then select regedit.exe in the search results.
    • In Windows 7, select Start, enter regedit in the Start Search box, and then select regedit.exe in the search results.
  3. Locate and then select the following registry subkey:
  4. On the Edit menu, point to New, and then select DWORD Value.
  5. Enter NoActivateHidden, and then press Enter.
  6. In the Details pane, press and hold (or right-click) NoActivateHidden, and then select Modify.
  7. In the Value data box, enter 1, and then select OK.
  8. Exit Registry Editor.

More Information

Security update deployment information

For deployment information about this update, see Microsoft Knowledge Base article KB4013241.

Security update replacement information

This security update replaces previously released security update KB3128008.

File hash information

Package NamePackage Hash SHA 1Package Hash SHA 2
excel2013-kb3172542-fullfile-x64-glb.exe 8F1CD65FA4A2601D24A951D940BCB1FB108B2C8D 29E46F6F916AA3D5AE63127F934C9CE500343E6E8F2197FF0C1ABBD0E0126C3B 

File information

How to get help and support for this security update