Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

How the Office Security Patch (Q328130) Applies to Commerce Server


View products that this article applies to.

This article was previously published under Q328332

↑ Back to the top


Summary

This article describes considerations for the Microsoft Office security patch (Q328130) and how the patch applies to Commerce Server 2000 and Commerce Server 2002.

For additional information, click the article number below to view the article in the Microsoft Knowledge Base:
328130 MS02-044: Unsafe Functions in Office Web Components

↑ Back to the top


More information

The version of Office Web Components that is included with both Commerce Server 2000 and Commerce Server 2002 does not contain the Office security patch that is included in Q328130. To resolve this issue, update your Commerce Server installation with the next available service pack. For Commerce Server 2000, this is Service Pack 3 (SP3) or later, and for Commerce Server 2002, this is Service Pack 1 (SP1) or later.

Note that just installing the Office Security Patch does not update the Office Web Components for future installations of Business Desk on client computers. Additionally, updating your installation of Commerce Server with the latest service pack does not address the vulnerability on your Business Desk client computers. The Office Web Components are installed when you use the Analysis Reporting features of Commerce Server through Business Desk. If you have already unpacked the Business Desk and used (and therefore installed) the Office Web Components from your Commerce Server virtual root (where the Office Web Components are installed during product installation), you must apply the patch in the Office security update (Q328130).

When you apply this patch to any Business Desk system that is using the Office Web Components (that is, to Business Desk clients that are using Analysis Reporting features), you are not vulnerable to the issues that are outlined in the Office security bulletin.

If none of your Business Desk client computers are using the Analysis Reporting feature (that is, you do not have the Office Web Components installed), you do not have to apply this patch to your Commerce Server or Business Desk installations.

↑ Back to the top


Keywords: KB328332, kbinfo

↑ Back to the top

Article Info
Article ID : 328332
Revision : 2
Created on : 11/17/2003
Published on : 11/17/2003
Exists online : False
Views : 393