Security News > 2020 > April > Microsoft Issues Out-Of-Band Security Update For Office, Paint 3D
Microsoft has released an out-of-band security update for Microsoft Office, Office 365 ProPlus and Paint 3D. The applications are affected by multiple Autodesk vulnerabilities that, if exploited, could enable remote code execution.
"Remote code execution vulnerabilities exist in Microsoft products that utilize the FBX library when processing specially crafted 3D content," according to Microsoft's Tuesday advisory.
Affected products include Office 365 ProPlus, which is Microsoft's subscription that comes with premium apps like Word, Excel, PowerPoint, Outlook and Teams; as well as Paint 3D, Microsoft's 3D modeling and printing application.
Microsoft Office 2016 and Microsoft Office 2019 are also impacted.
The security updates addresses these vulnerabilities by correcting the way 3D content is handled by Microsoft software.
News URL
https://threatpost.com/microsoft-issues-out-of-band-security-update-for-office-paint-3d/155016/
Related news
- Microsoft: New Windows scheduled task will launch Office apps faster (source)
- Android Malware Exploits a Microsoft-Related Security Blind Spot to Avoid Detection (source)
- Week in review: Chrome sandbox escape 0-day fixed, Microsoft adds new AI agents to Security Copilot (source)
- April 2025 Patch Tuesday forecast: More AI security introduced by Microsoft (source)
- Fake Microsoft Office add-in tools push malware via SourceForge (source)
- Google's got a hot cloud infosec startup, a new unified platform — and its eye on Microsoft's $20B+ security biz (source)
- Microsoft releases emergency update to fix Office 2016 crashes (source)
- Microsoft: Windows 'inetpub' folder created by security fix, don’t delete (source)
- Microsoft blocks ActiveX by default in Microsoft 365, Office 2024 (source)
- Microsoft: Office 2016 and Office 2019 reach end of support in October (source)