KB4462142 Security Update for Microsoft Office 2013

KB4462142 is a security update for Microsoft Office 2013 Service Pack 1 and Microsoft Office 2013 RT Service Pack 1. This security update supersedes the previous security update for Microsoft Office 2013 Service Pack 1. KB3172522 is the previous security update for Microsoft Office 2013 Service Pack 1. We look at the key aspects of KB4462142 for Microsoft Office 2013 SP 1 below.

Salient points about KB4462142 for Microsoft Office 2013 Service Pack 1

  • KB4462142 is a standalone security update. It supersedes KB3172522 security update.
  • The size of the MSU update file for 64 bit architecture is 258 KB and the MSU update file for 32 bit architecture has a size of 259 KB only.
  • KB4462142 is designed to patch CVE-2022-34717 vulnerability on the Microsoft Office 2013. This is a Remote Code Execution vulnerability.

Vulnerability resolved in KB4462142 for Microsoft Office 2013 Service Pack 1

There is a single ‘important’ severity vulnerability that affects the Microsoft Office 2013 Service Pack 1. The details of this vulnerability are listed below:

CVE-2022-34717 – Remote Code Execution

  • This is a CVSS 8.8 vulnerability with ‘Important’ severity.
  • It can lead to ‘Remote Code Execution’ attacks.
  • The vulnerability requires user interaction to be exploited.

In a web-based attack scenario, an attacker could host a website or server that contains a specially crafted file that is designed to exploit the vulnerability. However, an attacker would have no way to force the user to visit the website. Instead, an attacker would have to convince the user to click a link, typically by way of an enticement in an email or Instant Messenger message, and then convince the user to open the specially crafted file.

How can I deploy KB4462142 on Microsoft Office 2013 Service Pack 1?

  • KB4462142 can be deployed automatically if automatic updates are enabled on Microsoft Office 2013 Service Pack 1.
  • KB4462142 can be downloaded for 32 bit architecture from the Microsoft Download Center page. The update file is downloaded as an executable.
  • KB4462142 can be downloaded for 64 bit architecture from the Microsoft Download Center page. The update file is downloaded as an executable.
  • You can also download the KB4462142 security update as an MSU update file from the Microsoft Update Catalog. To download KB4462142 from Microsoft Update Catalog, you will need to get it from this page.

KB4462148 Security Update for Microsoft Office 2016

KB4462148 is the latest security update for Microsoft Office 2016 . It supersedes the previous security update for Microsoft Office 2016 KB4022162. We look at the key aspects of KB4462148 for Microsoft Office 2016.

Salient points about KB4462148 for Microsoft Office 2016

  • KB4462148 is a standalone security update. All the previous security updates for Microsoft Office 2016 should have already been deployed for complete protection of Microsoft Office 2016.
  • KB4462148 resolves an ‘important’ severity vulnerability that could lead to ‘Remote Code Execution’ attacks on the target installation.
  • The size of MSU update file for 64 bit architecture is 327 KB and the size of MSU update file for 32 bit architecture is 326 KB.

Vulnerability resolved in KB4462148 for Microsoft Office 2016

KB4462148 for Microsoft Office 2016 is released on 9th August 2022. The security update resolves an ‘important’ severity vulnerability on Microsoft Office 2016. Details of the vulnerability are listed below.

CVE-2022-34717 – Remote Code Execution

  • This is a CVSS 8.8 vulnerability with ‘Important’ severity.
  • It can lead to ‘Remote Code Execution’ attacks.
  • The vulnerability requires user interaction to be exploited.

In a web-based attack scenario, an attacker could host a website or server that contains a specially crafted file that is designed to exploit the vulnerability. However, an attacker would have no way to force the user to visit the website. Instead, an attacker would have to convince the user to click a link, typically by way of an enticement in an email or Instant Messenger message, and then convince the user to open the specially crafted file.

How can I deploy KB4462148 on Microsoft Office 2016?

  • KB4462148 can be automatically deployed if ‘automatic updates’ are enabled for Microsoft Office 2016.
  • You can download the KB4462148 executable file from the Microsoft Download Center. The 32 bit security update is available for download from this page.
  • KB4462148 executable for 64 bit systems can be downloaded from the Microsoft Download Center page here.
  • You can also download KB4462148 from the Microsoft Update Catalog page. The download files are available for 64 bit and 32 bit system architectures. The updates can be downloaded from the Microsoft Update Catalog page for KB4462148.

Summary

KB4462142 and KB4462148 are security updates that resolve CVE-2022-34717 for Microsoft Office 2013 Service Pack 1 and Microsoft Office 2016. Both updates are standalone updates. The updates can be applied automatically or manually through the Microsoft Update Catalog.

You may want to read more content related to Microsoft Updates: