DetailPage-MSS-KB

Microsoft small business knowledge base

Article ID: 2760594 - Last Review: April 24, 2014 - Revision: 1.1

On This Page

Introduction

This security update resolves vulnerabilities in Microsoft Office server software that could allow remote code execution in the context of the W3wp.exe process service account.

Summary

Microsoft has released security bulletin MS13-067. To view the complete security bulletin, go to one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update (http://support.microsoft.com/ph/6527)

Security solutions for IT professionals: TechNet Security Troubleshooting and Support (http://technet.microsoft.com/security/bb980617.aspx)

Help protect your Windows-based computer from viruses and malware: Virus Solution and Security Center (http://support.microsoft.com/contactus/cu_sc_virsec_master)

Local support according to your country: International Support (http://support.microsoft.com/common/international.aspx)

More information about this security update

Prerequisites to apply this security update

To apply this security update, you must have Service Pack 1  (http://support.microsoft.com/kb/2460073/ ) or Service Pack 2  (http://support.microsoft.com/kb/2687470/ ) for Microsoft Office Web App installed on the computer.

Restart information

You may have to restart the computer after you install this security update.

In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message is displayed that advises you to restart the computer.

To help reduce the possibility that a restart will be required, stop all affected services and close all applications that may use the affected files before you install this security update.

See Why you may be prompted to restart your computer after you install a security update on a Windows-based computer  (http://support.microsoft.com/kb/887012/ ) for more information.

Removal information

This security update cannot be removed.

Security update replacement information

This security update does not replace any previous security update.

File information

Collapse this imageExpand this image
The English version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
Collapse this tableExpand this table
File nameFile versionFile sizeDateTime
Dynamicgridcontent.asmxNot applicable31312-Feb-200812:44
Ecscalcserver.dll14.0.6112.5000636,78412-Oct-201111:50
Ewabrowsercompat.jsNot applicable6,56505-Nov-200911:47
Ewachart.pngNot applicable91,31329-Mar-201111:15
Ewacmdui.xmlNot applicable116,74030-Mar-201103:13
Ewainternalwebservice.asmxNot applicable32212-Feb-200812:44
Ewamoss.jsNot applicable786,37109-Jan-201311:36
Ewanewwpctrl.ascxNot applicable2,20215-Jun-200901:07
Ewaparameterstaskpane.ascxNot applicable1,51128-Sep-200909:29
Ewareadmodetoolbar.ascxNot applicable3,96330-Mar-201103:13
Ewastringshandler.ashxNot applicable31722-Nov-201208:59
Ewrdynamicimageprovider.aspxNot applicable43302-Jun-200911:56
Ewrdynamicslicerprovider.aspxNot applicable52902-Jun-200911:56
Ewrtreeview.jsNot applicable19,01215-Jun-200901:08
Ewrxlfilehandler.aspxNot applicable42102-Jun-200911:56
Ewrxlviewer.aspxNot applicable9,31630-Mar-201103:17
Ewrxlviewerinternal.aspxNot applicable13,54030-Mar-201103:17
Excelservercreateapplication.aspxNot applicable5,36404-Sep-200905:03
Excelserversafedataprovider.aspxNot applicable6,18820-Sep-200808:29
Excelserversafedataproviders.aspxNot applicable5,21920-Sep-200808:29
Excelserversettings.aspxNot applicable10,72421-Apr-200911:42
Excelservertrusteddcl.aspxNot applicable5,75320-Jan-200903:23
Excelservertrusteddcls.aspxNot applicable5,19620-Sep-200808:30
Excelservertrustedlocation.aspxNot applicable11,92804-Sep-200905:03
Excelservertrustedlocations.aspxNot applicable5,21320-Sep-200808:30
Excelserveruserdefinedfunction.aspxNot applicable6,04820-Jan-200903:24
Excelserveruserdefinedfunctions.aspxNot applicable5,22920-Sep-200808:30
Excelservicesadmin.aspxNot applicable5,86120-Jan-200903:24
Excelwebrenderer.ascxNot applicable4,87730-Mar-201103:13
Inputformexcelserversetting.ascxNot applicable2,77721-Feb-200811:42
Mewadynamicimageprovider.aspxNot applicable43302-Jun-200911:56
Microsoft.office.excel.webui.internal.dll14.0.7006.1000641,64022-Nov-201209:18
Microsoft.office.excel.webui.mobile.dll14.0.7005.1000113,22401-Nov-201208:03
Slicerrenderer.ascxNot applicable7,68705-Nov-200911:44
Xlsrv.dll14.0.7104.500014,652,60029-Jun-201305:52
Xlsrvintl.dll.103314.0.7104.5000106,17626-Jun-201303:34
Collapse this imageExpand this image

Applies to
  • Microsoft Excel Online
Keywords: 
kbsecvulnerability kbsecurity kbsecbulletin kbfix kbexpertiseinter kbbug atdownload KB2760594
Share
Additional support options
Ask The Microsoft Small Business Support Community
Contact Microsoft Small Business Support
Find Microsoft Small Business Support Certified Partner
Find a Microsoft Store For In-Person Small Business Support