You are currently offline, waiting for your internet to reconnect

MS13-091: Vulnerabilities in Microsoft Office could allow remote code execution: November 12, 2013

Support for Office 2003 has ended

Microsoft ended support for Office 2003 on April 8, 2014. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

INTRODUCTION
Microsoft has released security bulletin MS13-091. To view the complete security bulletin, go to one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your Windows-based from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link.
  • 2553284 MS13-091: Description of the security update for Microsoft Office 2010 (file format converters): November 12, 2013
  • 2760415 MS13-091: Description of the security update for Microsoft Office 2007 File Formats: November 12, 2013
  • 2760494 MS13-091: Description of the security update for Office 2003 text converters: November 12, 2013
  • 2760781 MS13-091: Description of the security update for Microsoft Office 2010 (proofing tools): November 12, 2013
  • 2768005 MS13-091: Description of the security update for Microsoft Office 2013 (file formats): November 12, 2013

File hash information

File nameSHA1 hashSHA256 hash
convloc.exe6001ABB3DD3323E4D4D5E5AA55B3285D8A325FB86FA838929461C43CD7CFBDB8A674FC99A48206D150C5B970F85F989E67E10052
convloc2007-kb2760415-fullfile-x86-glb.exe401585ABD13402A23CE315EE3AD797305998736D9588E03442645390CE89BA26830770F59CE6466D61FFC1CA890A44521A88CB0F
convloc2010-kb2553284-fullfile-x64-glb.exe74DC43395104A6424E501C2B08B7AAA9A8E4C4D02491C8871027E210DA38E9247B4FFD9760769D72ED5F02E968B7315DA0C9C449
convloc2010-kb2553284-fullfile-x86-glb.exe48BF36E0E0E0CABB0ABEA9C778EE3BA15FB490D7591ECFD2532C8315FFF887314918F103B812F89AF5D6594B56311CF724A80698
convloc64.exe59022FD6559D4D3FC6FA04A7805919779574258E31F7F4BB8A24786FED2DE7730939E4740CF8E369681DD8818FF504EF996D5E84
office2003-kb2760494-fullfile-enu.exe830D29E3FCAB65A1F0A6B5687F40C6B4DC1F412F48CA2D479ABD4D5AADAC771AF0367FD96363FC4F840CB03ADEDC07EB1D979EB7
proofloc2010-kb2760781-fullfile-x64-glb.exe2257FD5713E0201DB5807BD0D8500791EACCE73E0A9ADB7A537AE1835413BD3A3C35B339F263C96AB1DEBFAE64D69D040C42755E
proofloc2010-kb2760781-fullfile-x86-glb.exe57A59262989FA7698F9B54AAF419F70B2F0C4CD526C8844DE3A617D243110DDD0EDC340EE4C0312863886E254A96C28BA95DB5D8
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service dos
Properties

Article ID: 2885093 - Last Review: 11/13/2013 04:20:00 - Revision: 2.0

  • Microsoft Office Home and Business 2013
  • Microsoft Office Home and Student 2013
  • Microsoft Office Home and Student 2013 RT
  • Microsoft Office Personal 2013
  • Microsoft Office Professional 2013
  • Microsoft Office Professional Academic 2013
  • Microsoft Office Professional Plus 2013
  • Microsoft Office Standard 2013
  • Microsoft Office 2010 Service Pack 1
  • Microsoft Office 2010 Service Pack 2
  • Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
  • Microsoft Office Word 2007
  • Microsoft Office Word 2007 (Home and Student version)
  • Microsoft Office 2003 Service Pack 3
  • kbexpertiseinter kbqfe kbsecurity kbsecbulletin kbsecvulnerability kbbug kbfix kbsurveynew KB2885093
Feedback