Summary
This security update resolves a vulnerability in Microsoft Office. To learn more about the vulnerability, see Microsoft Security Bulletin MS17-014.
More information about this security update
The following articles contain more information about this security update as it relates to individual product versions. These articles may contain known issue information.
-
KB3178683 MS17-014: Description of the security update for Word 2007: March 14, 2017
-
KB3178680 MS17-014: Description of the security update for Excel Viewer 2007: March 14, 2017
-
KB3178676 MS17-014: Description of the security update for Excel 2007: March 14, 2017
-
KB3178690 MS17-014: Description of the security update for Excel 2010: March 14, 2017
-
KB3178687 MS17-014: Description of the security update for Word 2010: March 14, 2017
-
KB3178686 MS17-014: Description of the security update for Office 2010: March 14, 2017
-
KB3172542 MS17-014: Description of the security update for Excel 2013: March 14, 2017
-
KB3172464 MS17-014: Description of the security update for Word 2013: March 14, 2017
-
KB3178673 MS17-014: Description of the security update for Excel 2016: March 14, 2017
-
KB3178694 MS17-014: Description of the security update for Word Viewer: March 14, 2017
-
KB3178674 MS17-014: Description of the security update for Word 2016: March 14, 2017
-
KB4012487 MS17-014: Description of the security update for Lync for Mac 2011: March 14, 2017
Nonsecurity-related fixes and improvements that are included in this security update
-
Improves memory consumption for Microsoft Word 2013.
-
Improves the translation for the VLOOKUP function and an incorrect caption when you delete a sheet in Microsoft Excel 2016.
-
Adds an option to disable automatic grouping of date and time columns in PivotTables in Microsoft Excel 2016.
-
Improves memory consumption for Word 2016.
-
Contains fixes for the following nonsecurity issues:
-
When you use the Allow Users to Edit Ranges function to add a user to a range of data in Excel 2007, 2010, 2013, or 2016, Excel may crash.
-
When you save a workbook that has future metadata in cells with Boolean or error values in Excel 2010, Excel may crash. Alternatively, the future metadata in cells with Boolean or error values may be corrupted.
-
When you copy and paste a range of data that includes external links cross workbooks in Excel 2010, Excel 2010 may crash.
-
When you save a file that has certain future content created in later versions of Excel in Excel 2013 or 2010, Excel may crash.
-
Running VBA macros that involve hidden workbooks may be slow in Excel 2013.
-
When you enable macros in Excel 2013 on a touch-enabled device, Excel may crash.
-
When you try to open a document that has a Lotus Notes link (such as notes://xxx) in Office Web Apps, you receive one of the following error messages depending on whether the document should be viewed or edited, and the document can't be opened.
This page can't be displayed. You'll need a new app to open this blocked [sic] -
The installation of Office Web Apps Server fails in Windows Server 2012 R2 with the .NET Framework 4.6.1 installed.
-
When you browse to the action links of a question or answer (such as the Edit or Reply link) in a discussions list, no context of that message appears in the action links. Therefore, screen readers can't detect the context of the message that you focus on. The update adds a simple text string to all action links that are part of the message body.
-
In an announcements list, the email attachment of an email item is lost if the attached .eml file title contains specific characters.
-
After you enter and format a text in a table of a content editor web part in a site in Internet Explorer, Internet Explorer scrolls the page unexpectedly.
-
If your permission isn't enabled on the Manage Permissions page, you don't receive email notification as expected even if you are granted permissions.
-
When you try to apply a filter to a list view, you receive the following error message if it's grouped by a calculated column:
SqlError: 'ORDER BY items must appear in the select list if SELECT DISTINCT is specified. -
After you migrate from classic-mode to claims-based authentication in SharePoint 2013, you receive an exception when you try to access the SPFileVersion.CreatedBy property of a document.
-
When the subject line of a SharePoint alert email is longer than 75 characters and contains a mix of single-byte and double-byte characters, a carriage return line feed (CLRF) can occur between the two bytes of a double-bite character, causing the string to get corrupted.
-
Headings structure is incorrect in blogs basic view.
-
When you start a crawl for a web application that's migrated from SharePoint Server 2010, the crawl fails, and the content isn't searchable. This issue occurs because the connector retrieves the TenantId property two times.
-
When you open a document in Word Web App, you receive the following error message if there are special characters in the URL of the document:
Sorry, there was a problem and we can't open this document. -
When you try to restore a site that's backed up in a site collection, you receive the following error message if the site collection lock is set to No Access:
Access to the web site has been blocked. The site isn't accessible and isn't displayed on Central Admin. -
It's difficult for a screen reader to understand the structure between sections on a discussion board because there's only one heading. This update adds h2 and h3 labels to discussion boards for better screen reading.
-
In SharePoint Server 2013 on-premises, you can't be redirected to SharePoint Online to create sites.
-
When you print a document that is set as final in Word 2013, the date and time value disappears.
-
When you save a file that has certain future content created in later versions of Excel in Excel 2016, Excel 2016 may crash.
-
When you open a password-protected Excel Workbook through a hyperlink, a blank Excel window appears.
-
Adds new Get & Transform features in Excel 2016. See KB3141518 for more information.
-
Keyboard support for Office add-ins in the Backstage is broken.
-
If a document has certain OpenType fonts, the print preview and the printout of the document are different.
-
You can't perform mail merge with a header file by using Office Open XML documents.
-
Plain text content control does not preserve the font in VBA if the Windows language isn't English.
-
When you rest the pointer on a hyperlink, a bubble that contains the actual link is displayed. However, it disappears in a short time, so it's difficult to read the actual link.
-
It takes a long time when you repaginate a document that has a StyleRef field in Word 2016.
-
When you print a document that has markup in balloons in Word 2016, Word may crash.
-
When you delete inline shapes and add a comment in Word 2016, Word may crash.
-
When you open a document that contains text written from right to left (for example, Hebrew or Arabic text) and optional hyphens, Word 2016 may crash in some rare cases.
-
When you print a finalized document that has date and time fields inserted in Word 2016, the date and time is not displayed.
-
Character borders aren't displayed in Word 2016 for characters positioned to the left of the line's origination point (for example, in case of negative indent).
-
When you change the position of a picture font to Raised or Lowered in Word 2016, you experience unexpected scroll up and down.
-
Top and bottom paragraph borders for text inside a table may not be displayed at some zoom levels in Word 2016.
-
More Information
How to get help and support for this security update
Help for installing updates: Windows Update FAQ Security solutions for IT professionals: TechNet Security Support and Troubleshooting Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure Local support according to your country: International Support
Security update deployment information
Microsoft Office 2007 (all editions) and other software
Reference table
The following table contains the security update information for this software.
Security update file name |
For Microsoft Excel 2007 Service Pack 3: excel2007-kb3178676-fullfile-x86-glb.exe |
|
For Microsoft Word 2007 Service Pack 3: word2007-kb3178683-fullfile-x86-glb.exe |
|
For Microsoft Office Compatibility Pack: xlconv2007-kb3178677-fullfile-x86-glb.exe |
For Microsoft Office Compatibility Pack: wordconv2007-kb3178682-fullfile-x86-glb.exe |
|
For Microsoft Excel Viewer: xlview2007-kb3178680-fullfile-x86-glb.exe |
|
|
For Microsoft Word Viewer: office-kb3178694-fullfile-enu.exe |
Installation switches |
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.Microsoft Knowledge Base article 887012. To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see |
Removal information |
Use the Add or Remove Programs item in Control Panel. |
File information |
See Microsoft Knowledge Base article 3178676 See Microsoft Knowledge Base article 3178683 See Microsoft Knowledge Base article 3178677 See Microsoft Knowledge Base article 3178682 See Microsoft Knowledge Base article 3178680 See Microsoft Knowledge Base article 3178694 |
Registry key verification |
Not applicable |
Microsoft Office 2010 (all editions)
Reference table
The following table contains the security update information for this software.
Security update file name |
For Microsoft Office 2010 Service Pack 2 (32-bit editions): kb24286772010-kb3178686-fullfile-x86-glb.exe |
|
For Microsoft Office 2010 Service Pack 2 (64-bit editions) kb24286772010-kb3178686-fullfile-x64-glb.exe |
|
For Microsoft Excel 2010 Service Pack 2 (32-bit editions): excel2010-kb3178690-fullfile-x86-glb.exe |
|
For Microsoft Excel 2010 Service Pack 2 (64-bit editions): excel2010-kb3178690-fullfile-x64-glb.exe |
|
For Microsoft Word 2010 Service Pack 2 (32-bit editions): word2010-kb3178687-fullfile-x86-glb.exe |
|
For Microsoft Word 2010 Service Pack 2 (64-bit editions) word2010-kb3178687-fullfile-x64-glb.exe |
Installation switches |
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.Microsoft Knowledge Base article 887012. To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see |
Removal information |
Use the Add or Remove Programs item in Control Panel. |
File information |
See Microsoft Knowledge Base article 3178686 See Microsoft Knowledge Base article 3178690 See Microsoft Knowledge Base article 3178687 |
Registry key verification |
Not applicable |
Microsoft Office 2013 (all editions)
Reference table
The following table contains the security update information for this software.
Security update file name |
For Microsoft Excel 2013 Service Pack 1 (32-bit editions): excel2013-kb3172542-fullfile-x86-glb.exe |
|
For Microsoft Excel 2013 Service Pack 1 (64-bit editions): excel2013-kb3172542-fullfile-x64-glb.exe |
|
For Microsoft Word 2013 Service Pack 1 (32-bit editions): word2013-kb3172464-fullfile-x86-glb.exe |
|
For Microsoft Word 2013 Service Pack 1 (64-bit editions) word2013-kb3172464-fullfile-x64-glb.exe |
Installation switches |
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.Microsoft Knowledge Base article 887012. To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see |
Removal information |
Use the Add or Remove Programs item in Control Panel. |
File information |
See Microsoft Knowledge Base article 3172542 See Microsoft Knowledge Base article 3172464 |
Registry key verification |
Not applicable |
Microsoft Office 2013 RT (all editions)
Deployment |
The 3172542 update for Microsoft Excel 2013 RT is available via Windows Update. |
|
The 3172464 update for Microsoft Word 2013 RT is available via Windows Update. |
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.Microsoft Knowledge Base article 887012. To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see |
Removal information |
Click Control Panel, click System and Security, click Windows Update, and then under "See also," click Installed updates and select from the list of updates. |
File information |
See Microsoft Knowledge Base article 3172542 See Microsoft Knowledge Base article 3172464 |
Microsoft Office 2016 (all editions)
Reference table
The following table contains the security update information for this software.
Security update file name |
For Microsoft Excel 2016 (32-bit edition): excel2016-kb3178673-fullfile-x86-glb.exe |
|
For Microsoft Office 2016 (64-bit edition): excel2016-kb3178673-fullfile-x64-glb.exe |
|
For Microsoft Word 2016 (32-bit edition): word2016-kb3178674-fullfile-x86-glb.exe |
|
For Microsoft Word 2016 (64-bit edition): word2016-kb3178674-fullfile-x64-glb.exe |
Installation switches |
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.Microsoft Knowledge Base article 887012. To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see |
Removal information |
Use the Add or Remove Programs item in Control Panel. |
File information |
See Microsoft Knowledge Base article 3178673 See Microsoft Knowledge Base article 3178674 |
Registry key verification |
Not applicable |
Office for Mac 2011
Prerequisites
-
Mac OS X version 10.5.8 or later version on an Intel processor
-
Mac OS X user accounts must have administrator privileges to install this security update
Installing the update
Download and install the appropriate language version of the Microsoft Office for Mac 2011 14.7.2 Update from the Microsoft Download Center.
-
Quit any applications that are running, including virus-protection applications and all Microsoft Office applications, as they could interfere with the installation.
-
Open the Microsoft Office for Mac 2011 14.7.2 update volume on your desktop. This step might have been performed for you.
-
To start the update process, in the Microsoft Office for Mac 2011 14.7.2 update volume window, double-click Microsoft Office for Mac 2011. Update the application, and follow the instructions on the screen.
-
When the installation finishes successfully, you can remove the update installer from your hard disk. To verify that the installation finished successfully, see Verifying Update Installation. To remove the update installer, first drag the Microsoft Office for Mac 2011 14.7.2 update volume to the Trash, and then drag the file that you downloaded to the Trash.
Verifying update installation
To verify that a security update is installed on an affected system, follow these steps:
-
In Finder, navigate to the Application Folder (Microsoft Office 2011).
-
Select Word, Excel, PowerPoint or Outlook and launch the application.
-
On the application menu, click About Application_Name (where Application_Name is Word, Excel, PowerPoint or Outlook).
If the Latest Installed Update Version number is 14.7.2, the update has been successfully installed.
Restart requirement
This update does not require you to restart your computer.
Removing the update
This security update cannot be uninstalled.
Additional Information
If you have technical questions or problems downloading or using this update, see Microsoft for Mac Support to learn about the support options that are available to you.
Microsoft SharePoint Server 2007 (all editions)
Reference table
The following table contains the security update information for this software.
Security update file name |
For Excel Services on supported editions of Microsoft SharePoint Server 2007 Service Pack 2 (32-bit edition): xlsrvapp2007-kb3178678-fullfile-x86-glb.exe |
For Excel Services on supported editions of Microsoft SharePoint Server 2007 Service Pack 2 (64-bit edition): xlsrvapp2007-kb3178678-fullfile-x64-glb.exe |
|
Installation switches |
|
Restart requirement |
After you install this security update on all SharePoint servers, you must run the PSconfig tool to complete the installation process.Why you may be prompted to restart your computer after you install a security update on a Windows-based computer for more information. You may have to restart the computer after you install this security update. In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart the computer. To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install this security update. See |
Removal information |
This security update cannot be removed. |
File Information |
|
Registry key verification |
Not applicable |
Microsoft SharePoint Server 2010 (all editions)
Reference table
The following table contains the security update information for this software.
Security update file name |
For Excel Services on supported editions of Microsoft SharePoint Server 2010 Service Pack 2: xlsrv2010-kb3178685-fullfile-x64-glb.exe |
For Word Automation Services on supported editions of Microsoft SharePoint Server 2010 Service Pack 2: wdsrv2010-kb3178684-fullfile-x64-glb.exe |
|
Installation switches |
|
Restart requirement |
After you install this security update on all SharePoint servers, you must run the PSconfig tool to complete the installation process.Why you may be prompted to restart your computer after you install a security update on a Windows-based computer. You may have to restart the computer after you install this security update. In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart the computer. To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install this security update. For more information, see |
Removal information |
This security update cannot be removed. |
File Information |
See Microsoft Knowledge Base article 3178685 See Microsoft Knowledge Base article 3178684 |
Registry key verification |
Not applicable |
Microsoft SharePoint Server 2013 (all editions)
Reference table
The following table contains the security update information for this software.
Security update file name |
For Excel Services on supported editions of Microsoft SharePoint Server 2013 Service Pack 2: xlsrvloc2013-kb3172431-fullfile-x64-glb.exe |
|
For Microsoft SharePoint Foundation 2013 Service Pack 1: sts2013-kb3172540-fullfile-x64-glb.exe |
Installation switches |
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.Microsoft Knowledge Base article 887012. To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see |
Removal information |
This security update cannot be removed. |
File Information |
|
Registry key verification |
Not applicable |
Microsoft Office Web Apps 2010 (all versions)
Reference table
The following table contains the security update information for this software.
Security update file name |
For Microsoft Office Web Apps 2010 Service Pack 2: wac2010-kb3178689-fullfile-x64-glb.exe |
Installation switches |
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.Microsoft Knowledge Base article 887012. To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see |
Removal information |
This security update cannot be removed. |
File Information |
|
Registry key verification |
Not applicable |
Microsoft Office Web Apps 2013 (all versions)
Reference table
The following table contains the security update information for this software.
Security update file name |
For all supported editions of Microsoft Office Web Apps Server 2013 Service Pack 2: wacserver2013-kb3172457-fullfile-x64-glb.exe |
Installation switches |
|
Restart requirement |
In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.Microsoft Knowledge Base article 887012. To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see |
Removal information |
This security update cannot be removed. |
File Information |
|
Registry key verification |
Not applicable |
Lync for Mac 2011
Prerequisites
Before you install the Lync for Mac 2011 14.4.3 update on your computer, you must uninstall any version of Lync for Mac 2011 that's earlier than Lync for Mac 2011 14.0.4. Additionally, you must make sure that the computer is running Mac OS X 10.5 or a later version of the Mac OS X operating system.
To verify that the computer meets the operating system version prerequisite, click About This Mac on the Apple menu.
To determine the version of Lync for Mac 2011 that's installed on your computer, follow these steps:
-
On the Go menu, click Applications.
-
Start Lync for Mac 2011.
-
On the Lync menu, click About Lync.
The version number of Lync for Mac 2011 is displayed in the About Lync dialog box.
Installing the update
Download and install the Microsoft Lync for Mac 2011 14.4.3_170308 Update from the Microsoft Download Center.
-
Quit any applications that are running, including all Office applications, Microsoft Messenger, and Office Notifications, because they might interfere with the installation.
-
Make sure that your computer meets the minimum system requirements.
-
Click Download, or click the link for the language version that you want.
-
Follow the instructions on the screen to save the file to your hard disk. If you are using Safari, the downloaded file is saved to the desktop unless you specified a different location in the Preferences dialog box of Safari. To check your preferences, on the Safari menu, click Preferences, and then click General.
-
Double-click the file that you downloaded in stepd 3-4 to place the Microsoft Lync for Mac 2011 Update volume on your desktop, and then double-click the volume to open it. This step might have been performed for you.
-
In the Microsoft Lync for Mac 2011 Update volume window, double-click the Lync for Mac 2011 Update application to start the update process, and then follow the instructions on the screen.
-
If the installation finishes successfully, you can remove the update installer from your hard disk. To remove the update installer, first drag the Microsoft Lync for Mac 2011 update volume to the Trash, and then drag the file that you downloaded to the Trash.
Note This update is also available from Microsoft AutoUpdate, an application that can automatically keep your Microsoft software up to date. To use AutoUpdate, open Microsoft Lync, and then on the Help menu, click Check for Updates.
Verifying update installation
To verify that a security update is installed on an affected system, follow these steps:
-
On the Go menu, click Applications.
-
Start Lync for Mac 2011.
-
On the Lync menu, click About Lync.
The version number of Lync for Mac 2011 is displayed in the About Lync dialog box. If the Latest Installed Update Version number is 2011 14.4.3 (170308), the update has been successfully installed.
Restart requirement
After you install the Lync for Mac 2011 14.4.3 update, we recommend that you restart the computer before you sign in to Lync for Mac 2011.
Removing the update
To uninstall the update drag the Lync for Mac 2011 file that you downloaded to the Trash.
Additional information
If you have technical questions or problems downloading or using this update, see Office frequently asked questions.
Query Words
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE