Summary
This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user. Customers whose accounts are configured to have fewer user rights on the system could be less affected than those who operate under administrative user rights.
Introduction
Microsoft has released security bulletin MS15-059. To learn more about this security bulletin:
-
Home users:
https://www.microsoft.com/security/pc-security/updates.aspxSkip the details - Download the updates for your home computer or laptop from the Microsoft Update website now:
-
IT professionals:
How to obtain help and support for this security update
Help installing updates:Support for Microsoft UpdateSecurity solutions for IT professionals:TechNet Security Troubleshooting and SupportHelp protect your Windows-based computer from viruses and malware:Virus Solution and Security CenterLocal support according to your country:International support
More Information
Known issues and additional information about this security update
The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link.
-
KB 3039782 MS15-059: Description of the security update for Office 2013: June 9, 2015
-
KB 3039749 MS15-059: Description of the security update for Office 2013: June 9, 2015
-
KB 2863817 MS15-059: Description of the security update for Office 2010: June 9, 2015
More Information
The 2007 Microsoft Office suite (all editions)Reference tableThe following table contains the security update information for this software.
|
Security update file name |
For Microsoft Office Compatibility Pack Service Pack 3:convloc2007-kb2863812-fullfile-x86-glb.exe |
|
Installation switches |
|
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012. |
|
Removal information |
Use Add or Remove Programs item in Control Panel. |
|
File information |
See the file information section |
|
Registry key verification |
Not applicable |
Microsoft Office 2010 (all editions) and Other SoftwareReference TableThe following table contains the security update information for this software.
|
Security update file name |
For Microsoft Office 2010 Service Pack 2 (32-bit editions):convloc2010-kb2863817-fullfile-x86-glb.exe |
|
For Microsoft Office 2010 Service Pack 2 (64-bit editions):convloc2010-kb2863817-fullfile-x64-glb.exe |
|
|
Installation switches |
|
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012. |
|
Removal information |
Use Add or Remove Programs item in Control Panel. |
|
File information |
See the file information section |
|
Registry key verification |
Not applicable |
Microsoft Office 2013 (all editions)Reference TableThe following table contains the security update information for this software.
|
Security update file name |
For supported editions of Microsoft Office 2013 (32-bit editions):conv2013-kb3039749-fullfile-x86-glb.exeosfclient2013-kb3039782-fullfile-x86-glb.exe |
|
For supported editions of Microsoft Office 2013 (64-bit editions):conv2013-kb3039749-fullfile-x64-glb.exeosfclient2013-kb3039782-fullfile-x64-glb.exe |
|
|
Installation switches |
|
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012. |
|
Removal information |
Use Add or Remove Programs item in Control Panel. |
|
File information |
See the file information section |
|
Registry key verification |
Not applicable |
Microsoft Office 2013 RT (all editions)
|
Deployment |
The 3039749 update for Microsoft Office 2013 RT is available through Windows Update. |
|
The 3039782 update for Microsoft Office 2013 RT is available through Windows Update. |
|
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012. |
|
Removal information |
Click Control Panel, click System and Security, and then click Windows Update. Under See also, click Installed updates, and then select from the list of updates. |
|
File information |
See the file information section |
|
File name |
SHA1 hash |
SHA256 hash |
|---|---|---|
|
conv2013-kb3039749-fullfile-x64-glb.exe |
7E9F38FFF8AFE0B79FBF155E0F88FFA858077621 |
4E83E131330DD95EF4F95E5D7EEDF2D42FC37CFE326FAF15D5A63879FDE6BB14 |
|
conv2013-kb3039749-fullfile-x86-glb.exe |
E94303C3A0A45E28B1EA22CFE63CA129785CA4F5 |
ECD716A862ADEC9245348F910CA77C46D62790ADE68569F340EBA7708991DB97 |
|
convloc2007-kb2863812-fullfile-x86-glb.exe |
6830E35F55A2905A459E45EE6DB98C5474BFB31D |
8CCDFDDE3568944ABBC36E2949D9E858A120A00C0350ADAFD150070CE376F828 |
|
convloc2010-kb2863817-fullfile-x64-glb.exe |
7FBBA95B047A6A66986D9D128BF9D7C64796747B |
E2D11D3736403BE013AEB0645DCE4F73BF99DA4E606C3F72763CF19BFCF4F7D1 |
|
convloc2010-kb2863817-fullfile-x86-glb.exe |
AED9D146C71F4B77E77D461F8E4DD097BD3E7CE8 |
A48EDC6AE9DD6B6B644F029B1B7E4BADB9F124030534785A71028C69724945AE |
|
osfclient2013-kb3039782-fullfile-x64-glb.exe |
94426DEFB878E9FE06888727F570DBC740D2A26E |
FF1E0FC4BA0DE0AF02F536C65D46B05EC3E38E8004723ECA1CFE9A1275390E51 |
|
osfclient2013-kb3039782-fullfile-x86-glb.exe |
EDF3832CE11FB9E7599AB20ED220332FBFC4D06C |
4D69EF3D968E4A06E8A25D375ED161D9A313FB08734498E4135E36832F2C6161 |
