About this tag
MS14-064 is a critical security bulletin from Microsoft addressing two privately reported vulnerabilities in Windows Object Linking and Embedding (OLE). These vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file containing a malicious OLE object. Successful exploitation could enable an attacker to run arbitrary code with the same privileges as the current user, potentially leading to full system compromise if the user has administrative rights. The update was released on November 11, 2014, and applies to affected Windows versions. Users are advised to apply the security update promptly to mitigate the risk of remote code execution attacks.
-
MS14-064 - Critical: Vulnerabilities in Windows OLE Could Allow Remote Code Execution...
Severity Rating: Critical Revision Note: V1.0 (November 11, 2014): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft Windows Object Linking and Embedding (OLE). The vulnerabilities could allow remote code execution if a user opens a...- News
- Thread
- admin rights arbitrary code critical extended security updates microsoft office ms14-064 remote code execution user rights vulnerability windows ole
- Replies: 0
- Forum: Security Alerts