Security News > 2020 > April > Microsoft Issues Out-Of-Band Security Update For Office, Paint 3D
Microsoft has released an out-of-band security update for Microsoft Office, Office 365 ProPlus and Paint 3D. The applications are affected by multiple Autodesk vulnerabilities that, if exploited, could enable remote code execution.
"Remote code execution vulnerabilities exist in Microsoft products that utilize the FBX library when processing specially crafted 3D content," according to Microsoft's Tuesday advisory.
Affected products include Office 365 ProPlus, which is Microsoft's subscription that comes with premium apps like Word, Excel, PowerPoint, Outlook and Teams; as well as Paint 3D, Microsoft's 3D modeling and printing application.
Microsoft Office 2016 and Microsoft Office 2019 are also impacted.
The security updates addresses these vulnerabilities by correcting the way 3D content is handled by Microsoft software.
News URL
https://threatpost.com/microsoft-issues-out-of-band-security-update-for-office-paint-3d/155016/
Related news
- Microsoft pulls Exchange security updates over mail delivery issues (source)
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- Microsoft Ignite 2024 Unveils Groundbreaking AI, Security, and Teams Innovations (source)
- Microsoft plans to boot security vendors out of the Windows kernel (source)
- Microsoft announces new and improved Windows 11 security features (source)
- Microsoft Launches Windows Resiliency Initiative to Boost Security and System Integrity (source)
- Security? We've heard of it: How Microsoft plans to better defend Windows (source)
- Microsoft Fixes AI, Cloud, and ERP Security Flaws; One Exploited in Active Attacks (source)
- Microsoft 365 outage takes down Office web apps, admin center (source)
- Microsoft fixes bug behind random Office 365 deactivation errors (source)