protected view

  1. Extending the Microsoft Office Bounty Program

    Microsoft announces the extension of the Microsoft Office Bounty Program through December 31, 2017. This extension is retroactive for any cases submitted during the interim. The engagement we have had with the security community has been great and we are looking to continue that collaboration...
  2. Announcing the new Bug Bounty Program for Office Insider Builds on Windows

    We’ve engineered Office to be secure by design and continually invest in enhancing its security capabilities. In the spirit of maintaining a high security bar in Office, we’re launching the Bug Bounty Program for Office Insider Builds on Windows. The Office Bug Bounty Program complements our...
  3. MS11-045 - Important : Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2537146

    Severity Rating: Important Revision Note: V1.1 (August 10, 2011): Removed two erroneous workarounds in this bulletin's vulnerability section for CVE-2011-1276. This is an informational change only. Summary: This security update resolves eight privately reported...
  4. MS11-045 - Important: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2537146)

    Severity Rating: Important - Revision Note: V1.0 (June 14, 2011): Bulletin published.Summary: This security update resolves eight privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Excel file. An...
  5. More about the Office File Validation backport plan

    In November 2010, Microsoft released the first Security Bulletin (Link Removed due to 404 Error) against an Office 2010 component, in this case Microsoft Word. Approximately 6 months had elapsed since Office 2010 launched in May and while it's good for such a widely used product to be available...
  6. Microsoft Office "Anti-Bulletin"

    In November 2010, Microsoft released the first Security Bulletin (Link Removed due to 404 Error) against an Office 2010 component, in this case Microsoft Word. Approximately 6 months had elapsed since Office 2010 launched in May and while it's good for such a widely used product to be available...
  7. Benefits of Office 2010 File Validation will be made available for Office 2003 and 2007

    Hello everyone -- We're really excited to announce that Office File Validation, currently part of Office 2010, will soon be made available for Office 2003 and 2007. During development of Office 2010, the Office Team, in conjunction with members of the Microsoft Engineering Center (MSEC)...
  8. Microsoft admits it can’t stop Office file format hacks

    Microsoft’s plan to “sandboxâ€Â￾ Office documents in the next version of its application suite is an admission that the company cannot keep hackers from exploiting file format bugs, a security analyst said on July 23. “What’s been happening is that Office has lots of...