<< Back
CVE Number Vulnerability Product Severity Date
MS15-059 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3064949) Microsoft Office Important 14-01-2009

Technical Information

Brief overview of the risk:
This security update resolves vulnerabilities in Microsoft Office. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user.

Detailed Information on the risk:

A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could use a specially crafted file to perform actions in the security context of the current user.


Further information on this exploit is available at : MS15-059

Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2013 RT

Affected Software

Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2013 RT