Описание
Microsoft Office Defense in Depth Update
Microsoft has released an update for Microsoft Office that provides enhanced security as a defense in depth measure.
FAQ
Is this advisory related to the vulnerability that is documented by CVE-2023-36884 that was issued in July 2023?
Yes, this defense in depth update is not a vulnerability update, but installing this update stops the attack chain leading to the Windows Search Remote Code Execution Vulnerability (CVE-2023-36884). Microsoft recommends installing the Office updates discussed in this advisory as well as installing the Windows updates from August 2023.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| Microsoft Office 2013 Service Pack 1 (32-bit editions) | ||
| Microsoft Office 2013 Service Pack 1 (64-bit editions) | ||
| Microsoft Office 2013 RT Service Pack 1 | - | |
| Microsoft Word 2013 Service Pack 1 (32-bit editions) | ||
| Microsoft Word 2013 Service Pack 1 (64-bit editions) | ||
| Microsoft Word 2013 RT Service Pack 1 | - | |
| Microsoft Publisher 2013 Service Pack 1 (32-bit editions) | ||
| Microsoft Publisher 2013 Service Pack 1 (64-bit editions) | ||
| Microsoft Excel 2013 Service Pack 1 (32-bit editions) | ||
| Microsoft Excel 2013 Service Pack 1 (64-bit editions) |
Показывать по
10
Возможность эксплуатации
Publicly Disclosed
Yes
Exploited
Yes
Latest Software Release
Exploitation Detected
DOS
N/A