You are currently offline, waiting for your internet to reconnect

MS15-046: Description of the security update for Excel Web App 2010: June 9, 2015

INTRODUCTION
Microsoft has released security bulletin MS15-046. To learn more about this security bulletin:

Download information

This update is available for download from the Microsoft Download Center.

DownloadDownload the update for Excel Web App 2010

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals:TechNet Security Support and Troubleshooting

Help protect your Windows-based computer from viruses and malware: Virus and Security Solution Center

Local support according to your country:International Support

Prerequisites for installing this security update

To install this security update, you must have Microsoft SharePoint Server 2010 Service Pack 2 (SP2) installed on the computer.

For more information about how to obtain the service pack, click the following article number to view the article in the Microsoft Knowledge Base:
2687453 Description of SharePoint Server 2010 SP2

Restart information

You may have to restart the computer after you install this security update.

In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart the computer.

To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install this security update.

For more information, click the following article number to view the article in the Microsoft Knowledge Base:
887012 Why you may be prompted to restart your computer after you install a security update on a Windows-based computer

Security update replacement information

This security update replaces the following security update:
2826028 MS13-084: Description of the security update for Excel Online: October 8, 2013

Removal information

You cannot remove this security update.

File information

The English (United States) version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
File identifierFile nameFile versionFile sizeDateTime
cuixas.jscuixas.js263,36731-Jan-201407:14
dynamicgridcontent.asmxdynamicgridcontent.asmx|dynamicgridcontent.json31303-Sep-200911:40
ewabrowsercompat.jsewabrowsercompat.js6,56505-Nov-200911:47
ewachart.png91,31308-Dec-201004:43
ewacmdui.xmlewacmdui.xml116,74008-Dec-201008:28
ewainternalwebservice.asmxewainternalwebservice.asmx|ewainternalwebservice.json32203-Sep-200911:40
ewamoss.jsewamoss.js786,37109-Jan-201311:36
ewanewwpctrl.ascxexcelwebrenderernewwebpartcontrol.ascx2,20212-Feb-201310:38
ewaparameterstaskpane.ascxewaparameterstaskpane.ascx1,51112-Feb-201310:38
ewareadmodetoolbar.ascxewareadmodetoolbar.ascx3,96312-Feb-201310:38
ewastringshandler.ashxewastringshandler.ashx31722-Nov-201208:59
ewrdynamicimageprovider.aspxdynamicimageprovider.aspx43312-Feb-201310:38
ewrdynamicslicerprovider.aspxdynamicslicerprovider.aspx52912-Feb-201310:38
ewrtreeview.jsewrtreeview.js19,01203-Sep-200911:43
ewrxlfilehandler.aspxxlfilehandler.aspx42112-Feb-201310:38
ewrxlviewer.aspxxlviewer.aspx9,31612-Feb-201310:39
ewrxlviewerinternal.aspxxlviewerinternal.aspx13,54012-Feb-201310:39
excelservercreateapplication.aspxexcelservercreateapplication.aspx5,36412-Feb-201310:22
excelserversafedataprovider.aspxexcelserversafedataprovider.aspx6,18812-Feb-201310:22
excelserversafedataproviders.aspxexcelserversafedataproviders.aspx5,21912-Feb-201310:22
excelserversettings.aspxexcelserversettings.aspx10,72412-Feb-201310:22
excelservertrusteddcl.aspxexcelservertrusteddcl.aspx5,75312-Feb-201310:22
excelservertrusteddcls.aspxexcelservertrusteddcls.aspx5,19612-Feb-201310:22
excelservertrustedlocation.aspxexcelservertrustedlocation.aspx11,92812-Feb-201310:22
excelservertrustedlocations.aspxexcelservertrustedlocations.aspx5,21312-Feb-201310:22
excelserveruserdefinedfunction.aspxexcelserveruserdefinedfunction.aspx6,04812-Feb-201310:22
excelserveruserdefinedfunctions.aspxexcelserveruserdefinedfunctions.aspx5,22912-Feb-201310:22
excelservicesadmin.aspxexcelservicesadmin.aspx5,86112-Feb-201310:22
excelwebrenderer.ascxexcelwebrenderer.ascx4,87712-Feb-201310:38
inputformexcelserversetting.ascxinputformexcelserversetting.ascx2,77712-Feb-201310:22
mewadynamicimageprovider.aspxdynamicimageprovider.aspx43312-Feb-201310:38
microsoft.office.excel.webui.internal.dllmicrosoft.office.excel.webui.internal.dll14.0.7006.1000641,64022-Nov-201209:18
microsoft.office.excel.webui.mobile.dllmicrosoft.office.excel.webui.mobile.dll14.0.7005.1000113,22401-Nov-201208:03
slicerrenderer.ascxslicerrenderercontrol.ascx7,68712-Feb-201310:38
xlsrv.dllxlsrv.dll14.0.7151.500114,653,11223-May-201502:12
xlsrvintl.dll.1033xlsrvintl.dll14.0.7147.5000106,16817-Mar-201512:21
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated bufferoverrun overflow specially-formed scope specially-crafted denial of service dos
Properties

Article ID: 3054838 - Last Review: 06/09/2015 16:54:00 - Revision: 1.0

Microsoft Excel Web App

  • atdownload kbfix kbexpertiseinter kbbug kbsurveynew kbsecbulletin kbsecvulnerability kbsecurity KB3054838
Feedback
/script> pt> ttps://c1.microsoft.com/c.gif?DI=4050&did=1&t=">kTracking = 1; var varCustomerTracking = 1; var Route = "76500"; var Ctrl = ""; document.write(" var Route = "76500"; var Ctrl = ""; document.write(" t.com/c.gif?DI=4050&did=1&t=">