Summary


This security update resolves vulnerabilities in Microsoft Office server and productivity software. The vulnerabilities could allow remote code execution if an authenticated attacker sends specially crafted page content to a SharePoint server. An attacker who successfully exploited these vulnerabilities could run arbitrary code in the security context of the W3WP service account on the target SharePoint site.


The security update addresses the vulnerabilities by correcting how SharePoint Server sanitizes specially crafted page content. For more information about the vulnerabilities, see the "More Information" section.

Introduction

Microsoft has released security bulletin MS15-047. To learn more about this security bulletin:

How to obtain help and support for this security update

Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your Windows-based computer from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

More Information

Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link.

  • 2956192 MS15-047: Description of the security update for SharePoint Server 2010: May 12, 2015

  • 2760412 MS15-047: Description of the security update for SharePoint Server 2007: May 12, 2015

  • 3054792 MS15-047: Description of the security update for SharePoint Server 2013: May 12, 2015

Microsoft Office SharePoint Server 2007 (all editions)Reference table

The following table contains the security update information for this software.

Security update file name

For Microsoft Office SharePoint Server 2007 (32-bit editions):
coreserver2007-kb2760412-fullfile-x86-glb.exe


For Microsoft Office SharePoint Server 2007 (64-bit editions):
coreserver2007-kb2760412-fullfile-x64-glb.exe

Installation switches

See Microsoft Knowledge Base Article 912203

Restart requirement

In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.

To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.

Removal information

This security update cannot be removed.

File Information

See the file information section

Registry key verification

Not applicable

Microsoft SharePoint Server 2010 (all editions) and SharePoint Foundation 2010 (all versions)Reference table

The following table contains the security update information for this software.

Security update file name

For Microsoft SharePoint Server 2010 and Microsoft SharePoint Foundation 2010:
wssloc2010-kb3017815-fullfile-x64-glb.exe


For Microsoft SharePoint Server 2010:
coreserverloc2010-kb2956192-fullfile-x64-glb.exe

Installation switches

See Microsoft Knowledge Base Article 912203

Restart requirement

In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.

To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.

Removal information

This security update cannot be removed.

File Information

See the file information section

Registry key verification

Not applicable

SharePoint Server 2013 (all editions) and SharePoint Foundation 2013 (all versions)Reference table

The following table contains the security update information for this software.

Security update file name

For Microsoft SharePoint Server 2013 and Microsoft SharePoint Foundation 2013:
sts2013-kb2986212-fullfile-x64-glb.exe

Installation switches

See Microsoft Knowledge Base Article 912203

Restart requirement

In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.

To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.

Removal information

This security update cannot be removed.

File information

See the file information section

Registry key verification

Not applicable


FILE INFORMATION

File name

SHA1 hash

SHA256 hash

coreserver2007-kb2760412-fullfile-x64-glb.exe

A8DE853B51DC9F557C87109D2DAFC9CF3FB17FC8

7D6E9CC9427A5F7AC1789010EE1C0C3C4B39FDA656B4FCA115B83FC8ADEBD54B

coreserver2007-kb2760412-fullfile-x86-glb.exe

5C02B96588CBFF1F0B362E69279295AD5911A9BE

E2C421D65BA483C9A3695791DED4B3980195BC24B5C7E694CF595C0BB77622BD

sts2013-kb2986212-fullfile-x64-glb.exe

6F9E5EF70349719D3ABE90EDABC90A3850698B21

7CAF72FE8634B0D1188F37D8F0715F76E98B94F6AC27503396A48206E7157EF7

ubersrv2010-kb3015569-fullfile-x64-glb.exe

A95A2265EFCF8525C6ADCF72B19FD04CD06F4370

305365D1B6F5E72AFC0A7119E4EFE0BFFDEFCB98BA027E2C502C77E2A924BD35

ubersrv2013-kb3039780-fullfile-x64-glb.exe

E55295D90566BE1BAD8AD1FF3E822D2BA2D57C37

A1BC5DB81CDA77396B56AA8BB479F5CBF96587765821FF9A468B44AC5EC24C21

ubersrvprj2010-kb2999496-fullfile-x64-glb.exe

9CD935828EC99BA9934A2FB9FE89CC4A1C2D2350

64F6BD3AD24C3DE9E4CB381862E87DA5DC9050B25D95F05A9B39A285D47EA390

ubersrvprj2013-kb3039753-fullfile-x64-glb.exe

B9DF293F0BF678A82CFD0036D91A6BD54E4340BB

93A59231951769B63876D824418D2D469B46CFE31939323AA0611565D5BAC6D7

ubersts2013-kb3039747-fullfile-x64-glb.exe

8653D3962F6EDB984E0FF7B330BA33DC000BEE16

C3C0419F0D4D5649889E42FF0CBF1E1A164D1085FA6342760C05B29AF3428779

wssloc2010-kb3017815-fullfile-x64-glb.exe

4E2864CDCAAAC8ECF0DE63592DD31B66E6A3B292

04F8CCE59D05AF9DC6A2157128456E7EF957F9D7E2E5FFC091877EE4F2B30D27


Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

What affected your experience?

Thank you for your feedback!

×