{"id":17855,"date":"2020-12-16T12:28:29","date_gmt":"2020-12-16T11:28:29","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=17855"},"modified":"2020-12-16T12:29:47","modified_gmt":"2020-12-16T11:29:47","slug":"microsoft-revisionen-diverser-office-cves-15-dezember-2020","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/12\/16\/microsoft-revisionen-diverser-office-cves-15-dezember-2020\/","title":{"rendered":"Microsoft revisions to various Office CVEs (December 15, 2020)"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Schutz.jpg\" width=\"40\" align=\"left\" height=\"47\">[<a href=\"https:\/\/www.borncity.com\/blog\/2020\/12\/16\/microsoft-revisionen-diverser-office-cves-15-dezember-2020\/\" target=\"_blank\" rel=\"noopener\">German<\/a>]Microsoft has published an overview of revisions of various CVEs as of December 15, 2020. I received the whole thing by mail last night, and I'm posting it here for your information.<\/p>\n<p><!--more--><\/p>\n<p>For reference, the vulnerabilities in question were closed with the Office security updates of December 8, 2020. The update list in question can be found in my blog post <a href=\"https:\/\/borncity.com\/win\/2020\/12\/10\/patchday-microsoft-office-updates-december-8-2020\/\">Patchday Microsoft Office Updates (December 8, 2020)<\/a>. Microsoft has subsequently revised the following CVEs.&nbsp; <\/p>\n<h2>CVE-2020-17119: Outlook <\/h2>\n<p>&#8211; <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2020-17119\" target=\"_blank\" rel=\"noopener\">CVE-2020-17119 | Microsoft Outlook Information Disclosure Vulnerability<\/a><br \/>&#8211; Version 2.0<br \/>&#8211; Reason for Revision: Microsoft is announcing the availability of the security <br \/>&nbsp;&nbsp; updates for Microsoft Office for Mac. Customers running affected Mac software<br \/>&nbsp;&nbsp; should install the update for their product to be protected from this <br \/>&nbsp;&nbsp; vulnerability. Customers running other Microsoft Office software do not need to take<br \/>&nbsp;&nbsp; any action. See the Release Notes for more information and download links.<br \/>&#8211; Originally posted: December 8, 2020<br \/>&#8211; Updated: December 15, 2020<br \/>&#8211; Aggregate CVE Severity Rating: Important<\/p>\n<h2>CVE-2020-17123: Excel <\/h2>\n<p>&#8211; <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2020-17123\" target=\"_blank\" rel=\"noopener\">CVE-2020-17123 | Microsoft Excel Remote Code Execution Vulnerability<\/a><br \/>&#8211; Version 2.0<br \/>&#8211; Reason for Revision: Microsoft is announcing the availability of the security <br \/>&nbsp;&nbsp; updates for Microsoft Office for Mac. Customers running affected Mac software<br \/>&nbsp;&nbsp; should install the update for their product to be protected from this <br \/>&nbsp;&nbsp; vulnerability. Customers running other Microsoft Office software do not need to take<br \/>&nbsp;&nbsp; any action. See the Release Notes for more information and download links.<br \/>&#8211; Originally posted: December 8, 2020<br \/>&#8211; Updated: December 15, 2020<br \/>&#8211; Aggregate CVE Severity Rating: Important<\/p>\n<h2>CVE-2020-17124: PowerPoint <\/h2>\n<p>&#8211; <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2020-17124\" target=\"_blank\" rel=\"noopener\">CVE-2020-17124 | Microsoft PowerPoint Remote Code Execution Vulnerability<\/a><br \/>&#8211; Version 2.0<br \/>&#8211; Reason for Revision: Microsoft is announcing the availability of the security <br \/>&nbsp;&nbsp; updates for Microsoft Office for Mac. Customers running affected Mac software<br \/>&nbsp;&nbsp; should install the update for their product to be protected from this <br \/>&nbsp;&nbsp; vulnerability. Customers running other Microsoft Office software do not need to take<br \/>&nbsp;&nbsp; any action. See the Release Notes for more information and download links.<br \/>&#8211; Originally posted: December 8, 2020<br \/>&#8211; Updated: December 15, 2020<br \/>&#8211; Aggregate CVE Severity Rating: Important<\/p>\n<h2>CVE-2020-17126: Excel<\/h2>\n<p>&#8211; <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2020-17126\" target=\"_blank\" rel=\"noopener\">CVE-2020-17126 | Microsoft Excel Information Disclosure Vulnerability<\/a><br \/>&#8211; Version 2.0<br \/>&#8211; Reason for Revision: Microsoft is announcing the availability of the security <br \/>&nbsp;&nbsp; updates for Microsoft Office for Mac. Customers running affected Mac software<br \/>&nbsp;&nbsp; should install the update for their product to be protected from this <br \/>&nbsp;&nbsp; vulnerability. Customers running other Microsoft Office software do not need to take<br \/>&nbsp;&nbsp; any action. See the Release Notes for more information and download links.<br \/>&#8211; Originally posted: December 8, 2020<br \/>&#8211; Updated: December 15, 2020<br \/>&#8211; Aggregate CVE Severity Rating: Important<\/p>\n<h2>CVE-2020-17128: Excel<\/h2>\n<p>&#8211; <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2020-17128\" target=\"_blank\" rel=\"noopener\">CVE-2020-17128 | Microsoft Excel Remote Code Execution Vulnerability<\/a><br \/>&#8211; Version 2.0<br \/>&#8211; Reason for Revision: Microsoft is announcing the availability of the security <br \/>&nbsp;&nbsp; updates for Microsoft Office for Mac. Customers running affected Mac software<br \/>&nbsp;&nbsp; should install the update for their product to be protected from this <br \/>&nbsp;&nbsp; vulnerability. Customers running other Microsoft Office software do not need to take<br \/>&nbsp;&nbsp; any action. See the Release Notes for more information and download links.<br \/>&#8211; Originally posted: December 8, 2020<br \/>&#8211; Updated: December 15, 2020<br \/>&#8211; Aggregate CVE Severity Rating: Important<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]Microsoft has published an overview of revisions of various CVEs as of December 15, 2020. I received the whole thing by mail last night, and I'm posting it here for your information.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,580],"tags":[125,69],"class_list":["post-17855","post","type-post","status-publish","format-standard","hentry","category-office","category-security","tag-office","tag-security"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/17855","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=17855"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/17855\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=17855"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=17855"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=17855"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}