MS14-020: Vulnerability in Microsoft Publisher could allow remote code execution: April 8, 2014

Support for Office 2003 has ended

Microsoft ended support for Office 2003 on April 8, 2014. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

Microsoft has released security bulletin MS14-020. To learn more about this security bulletin:

Additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link.
  • 2878299 MS14-020: Description of the security update for Microsoft Publisher 2003 Service Pack 3: April 8, 2014
  • 2817565 MS14-020: Description of the security update for Office Publisher 2007 Service Pack 3: April 8, 2014

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help protect your Windows-based computer from viruses and malware: Virus and Security Solution Center

Local support according to your country: International Support

More information

File hash information

File nameSHA1 hashSHA256 hash
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service dos kbPublisher2007postRTMfix kbPublisher2007postSPSP3fix kbAudEndUser kbExpertiseBeginner

Article ID: 2950145 - Last Review: 04/08/2014 17:03:00 - Revision: 1.0

Microsoft Office Publisher 2007, Microsoft Office Publisher 2003

  • atdownload kbbug kbexpertiseinter kbfix kbsecbulletin kbsecurity kbsecvulnerability KB2950145