Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

MS08-014: Vulnerabilities in Microsoft Excel could allow remote code execution


View products that this article applies to.

Introduction

Microsoft has released security bulletin MS08-014. This security bulletin contains all the relevant information about the security update. This includes file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support


More information about this security update
For more information about this security update and for information about any known issues with specific releases of this software, click the following article numbers to view the articles in the Microsoft Knowledge Base:
946979 MS08-014: Description of the security update for Excel 2000: March 11, 2008
946976 MS08-014: Description of the security update for Excel 2002: March 11, 2008
943985 MS08-014: Description of the security update for Excel 2003: March 11, 2008
946974 MS08-014: Description of the security update for Excel 2007: March 11, 2008
943889 MS08-014: Description of the security update for Excel 2003 Viewer: March 11, 2008
947801 MS08-014: Description of the security update for Excel Converter 2007: March 11, 2008
948057 Description of the Office 2008 for Mac 12.0.1 Update
949357 Description of the Microsoft Office 2004 for Mac 11.4.1 Update

Known issues with this security update

  • After you install security update MS08-014 on a computer that has Microsoft Office Excel 2003 installed, array-entered functions that contain a Visual Basic for Applications (VBA) macro that refers to a Real Time Data source return an incorrect value. The incorrect value is usually 0.

    Microsoft has completed research regarding this issue and has rereleased MS08-014 for users of Microsoft Office Excel 2003 Service Pack 2 and Microsoft Office Excel 2003 Service Pack 3 (Microsoft Knowledge Base article 943985). Automatic Updates will correctly offer this update to users of Microsoft Office Excel 2003 Service Pack 2 and Microsoft Office Excel Service Pack 3, whether or not they have applied the original version of security update MS08-014. For more information about this issue and about how to determine which version of the update you have installed, click the following article number to view the article in the Microsoft Knowledge Base:
    950340 After you install security update 943985, Excel 2003 calculations return an incorrect result when a Real Time Data source is used in a user-defined Visual Basic for Applications function

↑ Back to the top


Keywords: KB949029, kbfix, kbbug, kbsecvulnerability, kbsecbulletin, kbsecurity, kbqfe, kbexpertisebeginner

↑ Back to the top

Article Info
Article ID : 949029
Revision : 7
Created on : 5/9/2012
Published on : 5/9/2012
Exists online : False
Views : 524