You are currently offline, waiting for your internet to reconnect

MS16-099: Security update for Microsoft Office: August 9, 2016

Summary
This security update resolves a vulnerability in Microsoft Office. To learn more about the vulnerability, see Microsoft Security Bulletin MS16-099.
More information about this security update
The following articles contain more information about this security update as it relates to individual product versions. These articles may contain known issue information.

Nonsecurity-related fixes and improvements that are included in this security update

  • Translates some terms in multiple languages to make sure that the meaning is accurate.
  • Translates some terms in multiple languages to make sure that the meaning is accurate.
  • Translates some terms in multiple languages to make sure that the meaning is accurate.
  • Add OST corruption events.
  • Translates some terms in multiple languages to make sure that the meaning is accurate.
  • Update the requirement set to the current version for Web Add-ins in Outlook 2016.
  • Contains fixes for the following nonsecurity issues:

    • Attachments are rearranged, deleted, duplicated, or corrupted.
    • When you try to download attachments in an IRM protected email message offline in Outlook 2013, you receive the following error message:
      Sorry, something went wrong opening Information Rights Management protected content. The network location cannot be reached.
      This issue occurs after you install October 13, 2015, update for Office 2013 (KB3054941).
    • Administrator can use the Group Policy to block running any macro in the files that are download from the Internet in Office 2013 applications. This feature is same as in Office 2016 applications. See the following articles for more information:
    • When you try to print a document in the envelope paper size and the landscape orientation in Word 2013, the printing is blocked and the document is set as the letter page size in the spooler file.
    • The track changes bar may not appear in the correct position in Word 2013.
    • Assume that you preview a Word document in the preview pane in Windows Explorer. When you print a document that contains comments in Word 2013 during this time, the comments are not printed.
    • It takes a long time to run a macro to implement some revisions in Word 2013.
    • Assume that you formatted text as right-to-left in Word 2010 using the built-in RtlRun macro, and that this text contains text in Latin characters. When you open the document in Word 2013, the text is displayed with the letters in reverse order. For example, "txeT" instead of "Text."
    • Recipients on email sent programmatically in Outlook 2013 aren't added to the users nickname cache. Therefore, when you manually try to send another email message to the same recipients, you won't get any suggestion for those recipients' names. This update enables users to turn on the ability for recipients to be added to the nickname cache when email message is sent programmatically. See KB3115397 for more information.
    • When you create an email message by using an Outlook template (.oft) in online mode in Outlook 2013, German of French extended characters aren't displayed correctly and garbled characters are displayed.
    • When you paste a mailto link that has an embedded hyperlink in an email message in Outlook 2013, the hyperlink isn't clickable.
    • When you drag-and-drop a folder (C) between two other folders  (A, B) which have sub-folders, folder C will be nested into folder A as a subfolder instead of being inserted between A and B at their same level.
    • When you mark a task as completed in Outlook 2013, you receive the following error message:
      We need to know who to send this to. Make sure you enter at least one name.
      This issue occurs after you install December 8, 2015, update for Outlook 2013 (KB3114349).
    • If Outlook 2013 crashes after you send an email message while the email message is still in the Outbox folder, the email message is lost and can't be found.
    • After failing an initial logon, a subsequent retry may cause the following message to be incorrectly displayed:
      The Microsoft Exchange administrator has made a change that requires you quit and restart Outlook.

    • Assume that you add a second Exchange account to an existing profile in Outlook 2013 while it's running, and select a different sync slider setting. After you restart Outlook 2013, the sync slider setting of the new account is reset to the default.
    • Folders may disappear from the favorites list in Outlook 2013. This issue occurs if you implement the DisableCrossAccountCopy policy.
    • After the MAPI over HTTP transport protocol is disabled for some Exchange topologies, some online archive mailbox can't be opened any longer in Outlook 2013.
    • In an ADAL authentication enabled environment, you can't create a profile for Outlook 2013 through Control Panel.
    • After you enable the I am currently giving a presentation option in the Presentation Settings dialog box, Outlook 2013 will not be able to authenticate and will enter a Need Password state.
    • You can't open Mail in Control Panel if you have Outlook 2013 Click-to-Run installed.
    • Assume that you have a Project .mpp file that's stored in a SharePoint document library. When you click the file name, the project opens but you don't see a banner that offers you the ability to edit or check out the project. Instead, the project may keep in a read-only state and you can't save or check in changes.
    • When you try to reply or forward an email message that contains a linked image, Outlook 2016 freezes before the image is displayed.
    • Some unnecessary network traffic occurs during AutoDiscover in Outlook 2016.
    • When you mark a task as completed in Outlook 2016, you receive the following error message:
      We need to know who to send this to. Make sure you enter at least one name.

    • When you use a .prf file to set an IMAP profile in Outlook 2016, authentication dialog box isn't displayed. Therefore, emails can't be synchronized and you can't send email messages.
    • When you paste a mailto link that has an embedded hyperlink in an email message in Outlook 2016, the hyperlink isn't clickable.
    • When you create an email message by using an Outlook template (.oft) in online mode in Outlook 2016, German of French extended characters aren't displayed correctly and garbled characters are displayed.
    • When you send digitally signed email messages in a 64-bit version of Outlook 2016, you receive the following error message:
      A required action was not successful because of an unspecified error.

    • You can't use Outlook 2016 to connect online archive and shared mailbox in different sites in Exchange Server 2010.
    • Even though the Cached Mode Group Policy Object (GPO) forces cache mode for an account, the cached account still displays an online data file location.
    • Assume that you add a second Exchange account to an existing profile in Outlook 2016 while it's running, and select a different sync slider setting. After you restart Outlook 2016, the sync slider setting of the new account is reset to the default.
    • If Outlook 2016 crashes after you send an email message while the email message is still in the Outbox folder, the email message is lost and can't be found.
    • After you enable the I am currently giving a presentation option in the Presentation Settings dialog box, Outlook 2016 will not be able to authenticate and will enter a Need Password state.
    • If you open two documents that have the same macro name but different VBProject names in Word 2016, the MacroButton field stops working.
    • When you convert a document that has basic line shapes that have different line widths to a PDF or XPS file in Word 2016, the basic line shapes are displayed as having the same width.
    • When you try to reply or forward an email message that contains a linked image, Outlook 2016 freezes before the image is displayed.
    • It takes a long time to run a macro to implement some revisions in Word 2016.
More information

Security update deployment information

Microsoft Office 2007 (all editions) and Other Software

Reference table

The following table contains the security update information for this software.
Security update file nameFor Microsoft Office 2007 Service Pack 3:
convloc2007-kb3114442-fullfile-x86-glb.exe
mso2007-kb3114893-fullfile-x86-glb.exe
For Microsoft Word 2007 Service Pack 3:
word2007-kb3115465-fullfile-x86-glb.exe
For Microsoft OneNote 2007 Service Pack 3:
onenote2007-kb3114456-fullfile-x86-glb.exe
For Microsoft Word Viewer:
office-kb3115479-fullfile-enu.exe
office-kb3115480-fullfile-enu.exe
Installation switchesSee Microsoft Knowledge Base Article 912203
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.

To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.
Removal informationUse the Add or Remove Programs item in Control Panel.
File informationSee Microsoft Knowledge Base Article 3114442
See Microsoft Knowledge Base Article 3114893
See Microsoft Knowledge Base Article 3115465
See Microsoft Knowledge Base Article 3114456
See Microsoft Knowledge Base Article 3115479
See Microsoft Knowledge Base Article 3115480
Registry key verificationNot applicable

Microsoft Office 2010 (all editions)

Reference table

The following table contains the security update information for this software.
Security update file nameFor Microsoft Office 2010 Service Pack 2 (32-bit editions):
convloc2010-kb3114400-fullfile-x86-glb.exe
mso2010-kb3114869-fullfile-x86-glb.exe
kb24286772010-kb3115468-fullfile-x86-glb.exe
For Microsoft Office 2010 Service Pack 2 (64-bit editions)
convloc2010-kb3114400-fullfile-x64-glb.exe
mso2010-kb3114869-fullfile-x64-glb.exe
kb24286772010-kb3115468-fullfile-x64-glb.exe
For Microsoft OneNote 2010 Service Pack 2 (32-bit editions):
onenoteloc2010-kb3114885-fullfile-x86-glb.exe
For Microsoft OneNote 2010 Service Pack 2 (64-bit editions):
onenoteloc2010-kb3114885-fullfile-x64-glb.exe
For Microsoft Word 2010 Service Pack 2 (32-bit editions):
word2010-kb3115471-fullfile-x86-glb.exe
For Microsoft Word 2010 Service Pack 2 (64-bit editions)
word2010-kb3115471-fullfile-x64-glb.exe
Installation switchesSee Microsoft Knowledge Base Article 912203
Restart requirement In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.

To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.
Removal informationUse the Add or Remove Programs item in Control Panel.
File informationSee Microsoft Knowledge Base Article 3114400
See Microsoft Knowledge Base Article 3114869
See Microsoft Knowledge Base Article 3115468
See Microsoft Knowledge Base Article 3114885
See Microsoft Knowledge Base Article 3115471
Registry key verificationNot applicable

Microsoft Office 2013 (all editions)

Reference table

The following table contains the security update information for this software.
Security update file nameFor Microsoft Office 2013 Service Pack 1 (32-bit editions)
conv2013-kb3114340-fullfile-x86-glb.exe
mso2013-kb3115427-fullfile-x86-glb.exe
For Microsoft Office 2013 Service Pack 1 (64-bit editions)
conv2013-kb3114340-fullfile-x64-glb.exe
mso2013-kb3115427-fullfile-x64-glb.exe
For Microsoft OneNote 2013 Service Pack 1 (32-bit editions)
onenote2013-kb3115256-fullfile-x86-glb.exe
For Microsoft OneNote 2013Service Pack 1 (64-bit editions)
onenote2013-kb3115256-fullfile-x64-glb.exe
For Microsoft Word 2013 Service Pack 1 (32-bit editions):
word2013-kb3115449-fullfile-x86-glb.exe
For Microsoft Word 2013 Service Pack 1 (64-bit editions)
word2013-kb3115449-fullfile-x64-glb.exe
Installation switchesSee Microsoft Knowledge Base Article 912203
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.

To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.
Removal informationUse the Add or Remove Programs item in Control Panel.
File informationSee Microsoft Knowledge Base Article 3114340
See Microsoft Knowledge Base Article 3115427
See Microsoft Knowledge Base Article 3115256
See Microsoft Knowledge Base Article 3115449
Registry key verificationNot applicable

Microsoft Office 2013 RT (all editions)

Reference table

The following table contains the security update information for this software.
DeploymentThe 3114340, 3115427, 3115256, and 3115449 updates for Microsoft Office 2013 RT and its components are available via Windows Update.
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.

To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.
Removal informationClick Control Panel, click System and Security, and then click Windows Update. Under See also, click Installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3114340
See Microsoft Knowledge Base Article 3115427
See Microsoft Knowledge Base Article 3115256
See Microsoft Knowledge Base Article 3115449

Microsoft Office 2016 (all editions)

Reference table

The following table contains the security update information for this software.
Security update file nameFor Microsoft Office 2016 (32-bit edition)
mso2016-kb3115415-fullfile-x86-glb.exe
For Microsoft Office 2016 (64-bit edition)
mso2016-kb3115415-fullfile-x64-glb.exe
For Microsoft OneNote 2016(32-bit editions)
onenote2016-kb3115419-fullfile-x86-glb.exe
For Microsoft OneNote 2016 (64-bit editions)
onenote2016-kb3115419-fullfile-x64-glb.exe
For Microsoft Word 2016 (32-bit edition):
word2016-kb3115439-fullfile-x86-glb.exe
For Microsoft Word 2016 (64-bit edition):
word2016-kb3115439-fullfile-x64-glb.exe
Installation switchesSee Microsoft Knowledge Base Article 912203
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.

To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.
Removal informationUse the Add or Remove Programs item in Control Panel.
File informationSee Microsoft Knowledge Base Article 3115415
See Microsoft Knowledge Base Article 3115419
See Microsoft Knowledge Base Article 3115439
Registry key verificationNot applicable

Office for Mac 2011

Prerequisites

  • Mac OS X version 10.5.8 or later version on an Intel processor
  • Mac OS X user accounts must have administrator privileges to install this security update
Installing the Update

Download and install the appropriate language version of the Microsoft Office for Mac 2011 14.6.7 Update from the Microsoft Download Center.

  1. Exit any applications that are running, including virus-protection applications and all Microsoft Office applications, because they could interfere with the installation. 
  2. Open the Microsoft Office for Mac 2011 14.6.7. Update volume on your desktop. This step might have been performed for you.
  3. To start the update process, in the Microsoft Office for Mac 2011 14.6.7 update volume window, double-click the Microsoft Office for Mac 2011 update application, and then follow the instructions on the screen. 
  4. When the installation finishes successfully, you can remove the update installer from your hard disk. To verify that the installation finished successfully, see Verifying Update Installation. To remove the update installer, first drag the Microsoft Office for Mac 2011 14.6.7 update volume to the Trash, and then drag the file that you downloaded to the Trash. 
Verifying update installation

To verify that a security update is installed on an affected system, follow these steps:

  1. In Finder, navigate to the Application Folder (Microsoft Office 2011).
  2. Select Word, Excel, PowerPoint or Outlook, and then start the application. 
  3. On the Application menu, click About Application_Name (where About Application_Name is Word, Excel, PowerPoint or Outlook).
If the Latest Installed Update Version number is 14.6.7, the update has been successfully installed.

Restart Requirement

This update does not require you to restart your computer.

Removing the Update

This security update cannot be uninstalled.

Additional Information

If you have technical questions or problems downloading or using this update, see Microsoft for Mac Support to learn about the support options that are available to you.

Office 2016 for Mac

Prerequisites

  • Mac OS X Yosemite 10.10 or later version on an Intel processor
  • A valid Microsoft Office 365 subscription
Installing the Update

Download and install the appropriate language version of the Microsoft Office 2016 for Mac 15.25.0 update from KB3179163.

  1. Exit any applications that are running, including virus-protection applications and all Microsoft Office applications, because they could interfere with the installation. 
  2. Open the Microsoft Office 2016 for Mac 15.25.0 update volume on your desktop. This step might have been performed for you. 
  3. To start the update process, in the Microsoft Office 2016 for Mac 15.25.0, update volume window, double-click the Microsoft Office 2016 for Mac 15.25.0 update application, and then follow the instructions on the screen. 
  4. When the installation finishes successfully, you can remove the update installer from your hard disk. To verify that the installation finished successfully, see Verifying Update Installation. To remove the update installer, first drag the Microsoft Office 2016 for Mac 15.25.0 update volume to the Trash, and then drag the file that you downloaded to the Trash. 
Verifying Update Installation

To verify that a security update is installed on an affected system, follow these steps:

  1. In Finder, navigate to the Application Folder (Microsoft Office 2016).
  2. Select Word, Excel, PowerPoint or Outlook and then start the application. 
  3. On the Application menu, click About Application_Name (where About Application_Name is Word, Excel, PowerPoint or Outlook).
If the Latest Installed Update Version number is 15.25.0, the update has been successfully installed.

Restart Requirement

This update does not require you to restart your computer.

Removing the Update

This security update cannot be uninstalled.

How to get help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE
Properties

Article ID: 3177451 - Last Review: 08/22/2016 17:01:00 - Revision: 2.0

Microsoft Office Home and Business 2016, Microsoft Office Home and Student 2016, Microsoft Office Personal 2016, Microsoft Office Professional 2016, Microsoft Office Professional Plus 2016, Microsoft Office Standard 2016, OneNote 2016, Outlook 2016, Word 2016, Microsoft Office 2013 Service Pack 1, Microsoft OneNote 2013, Microsoft Word 2013, Microsoft Office 2010 Service Pack 2, Microsoft OneNote 2010, Microsoft Word 2010, 2007 Microsoft Office Suite Service Pack 3, Microsoft Office OneNote 2007, Microsoft Office OneNote 2007 (Home and Student version), Microsoft Office Outlook 2007, Microsoft Office Word 2007, Microsoft Office Word 2007 (Home and Student version), Word Viewer, Microsoft Office 2016 for Mac, Microsoft Office for Mac Academic 2011, Microsoft Office for Mac Home and Business 2011, Microsoft Office for Mac Home and Business 2011 Home Use Program, Microsoft Office for Mac Home and Student 2011, Microsoft Office for Mac Standard 2011

  • kbexpertiseinter kbsecurity kbsecbulletin kbsecvulnerability kbbug kblist kbfix kbsurveynew KB3177451
Feedback
html>