Microsoft Office CVE-2015-0063 Remote Code Execution Vulnerability


This security update resolves three privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

affected-products-logoAffected Applications

Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
Microsoft SharePoint Server 2010
Microsoft Office Web Apps 2010