Microsoft fixes security vulnerabilities in Office products

Microsoft has released the fourth update, which closes the last of the vulnerabilities found by Check Point in Microsoft Office products, the company told Kommersant. The vulnerabilities provided the ability to deliver and execute malicious code on the victim’s device via Word documents, Outlook e-mail, and most MS Office file formats. They were discovered by Check Point Research using automated software testing.

Vulnerabilities have existed for several years and arose due to parsing errors made in legacy code, said Yaniv Balmas, head of research at Check Point Software Technologies. Check Point has reported the vulnerabilities to Microsoft, and the company has released patches.

Yulia Stepanova