**Microsoft Office Suites Software** | **Component** | **Maximum Security Impact** | **Aggregate Severity Rating** | **Updates Replaced** |
**Microsoft Office 2007** | ||||
Microsoft Office 2007 Service Pack 3 | [Microsoft Word 2007 Service Pack 3](https://www.microsoft.com/download/details.aspx?familyid=73f5dfd3-bd55-495a-b822-b6afb00ed368) (2965284) | Remote Code Execution | Critical | 2956109 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
**Microsoft Office 2010** | ||||
[Microsoft Office 2010 Service Pack 2 (32-bit editions)](https://www.microsoft.com/download/details.aspx?familyid=9152b9ef-0ce2-4f27-a70a-c753f0b12d05) (2965236) | Not applicable | Remote Code Execution | Critical | 2956138 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
[Microsoft Office 2010 Service Pack 2 (64-bit editions)](https://www.microsoft.com/download/details.aspx?familyid=86a863ad-bed3-4aea-929c-2b85c388205f) (2965236) | Not applicable | Remote Code Execution | Critical | 2956138 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
Microsoft Office 2010 Service Pack 2 (32-bit editions) | [Microsoft Word 2010 Service Pack 2 (32-bit editions)](https://www.microsoft.com/download/details.aspx?familyid=7614904a-99c1-44fe-abf7-6dc7d365ef63) (2553428) | Remote Code Execution | Critical | 2956139 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
Microsoft Office 2010 Service Pack 2 (64-bit editions) | [Microsoft Word 2010 Service Pack 2 (64-bit editions)](https://www.microsoft.com/download/details.aspx?familyid=be87fa00-9cf6-47a3-863c-2ed92ad5a738) (2553428) | Remote Code Execution | Critical | 2956139 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
**Microsoft Office 2013 and Microsoft Office 2013 RT** | ||||
Microsoft Office 2013 Service Pack 1 (32-bit editions) | [Microsoft Word 2013 Service Pack 1 (32-bit editions)](https://www.microsoft.com/download/details.aspx?familyid=2c4bcf40-ff37-49af-b641-207bfc997936) (2965224) | Remote Code Execution | Important | 2956163 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
Microsoft Office 2013 Service Pack 1 (64-bit editions) | [Microsoft Word 2013 Service Pack 1 (64-bit editions)](https://www.microsoft.com/download/details.aspx?familyid=3bad7311-e0bd-417a-89b7-7b8378a1fc52) (2965224) | Remote Code Execution | Important | 2956163 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
Microsoft Office 2013 RT Service Pack 1 | Microsoft Word 2013 RT Service Pack 1 (2965224) [1] | Remote Code Execution | Important | 2956163 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
**Microsoft Office for Mac** | ||||
[Microsoft Outlook for Mac for Office 365](https://www.microsoft.com/download/details.aspx?familyid=65542ae1-62b8-41d8-b5ed-3a51194acb73) (3055707) | Not applicable | Elevation of Privilege | Important | None |
[Microsoft Office for Mac 2011](https://www.microsoft.com/download/details.aspx?familyid=1d9eec35-7499-45e6-b403-936d84ec046b) (3051737) | Not applicable | Elevation of Privilege | Important | 3018888 in [MS14-081](http://go.microsoft.com/fwlink/?linkid=519132) |
Microsoft Office for Mac 2011 | [Microsoft Word for Mac 2011](https://www.microsoft.com/download/details.aspx?familyid=1d9eec35-7499-45e6-b403-936d84ec046b) (3051737) | Remote Code Execution | Important | 3018888 in [MS14-081](http://go.microsoft.com/fwlink/?linkid=519132) |
**Other Office Software** | ||||
[Microsoft Word Viewer](https://www.microsoft.com/download/details.aspx?familyid=7b03e9ff-f67e-4e96-9831-a0cad1a13e31) (2965289) | Not applicable | Remote Code Execution | Critical | 2956188 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
[Microsoft Office Compatibility Pack Service Pack 3](https://www.microsoft.com/download/details.aspx?familyid=daf8e168-0327-4623-8183-e5071b81bbf2) (2965210) | Not applicable | Remote Code Execution | Critical | 2956107 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
**Microsoft Office Services and Web Apps** | **Component** | **Maximum Security Impact** | **Aggregate Severity Rating** | **Updates Replaced** |
**Microsoft SharePoint Server 2010** | ||||
Microsoft SharePoint Server 2010 Service Pack 2 | [Word Automation Services](https://www.microsoft.com/download/details.aspx?familyid=7e9f2d0c-9e17-438a-825a-2068e3501630) (2553164) | Remote Code Execution | Critical | 2956136 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
**Microsoft SharePoint Server 2013** | ||||
Microsoft SharePoint Server 2013 Service Pack 1 | [Word Automation Services](https://www.microsoft.com/download/details.aspx?familyid=3ff0407a-76eb-43f8-b886-01e4e4b1c85e) (2965215) | Remote Code Execution | Important | 2920731 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
**Microsoft Office Web Apps 2010** | ||||
Microsoft Office Web Apps 2010 Service Pack 2 | [Microsoft Office Web Apps Server 2010 Service Pack 2](https://www.microsoft.com/download/details.aspx?familyid=69103d38-35ff-42b8-b50e-55169d5ea3bf) (2965238) | Remote Code Execution | Critical | 2956069 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
**Microsoft Office Web Apps 2013** | ||||
Microsoft Office Web Apps 2013 Service Pack 1 | [Microsoft Office Web Apps Server 2013 Service Pack 1](https://www.microsoft.com/download/details.aspx?familyid=d40b7ded-c9b9-4ea9-9fb5-9d32b32f6534)[2](2965306) | Remote Code Execution | Important | 2956158 in [MS15-022](http://go.microsoft.com/fwlink/?linkid=526461) |
**Vulnerability Severity Rating and Maximum Security Impact by Affected Software** | ||||||
**Affected Software** | [**Microsoft Office Memory Corruption Vulnerability – CVE-2015-1641**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1641) | [**Microsoft Office Component Use After Free Vulnerability - CVE-2015-1649**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1649) | [**Microsoft Office Component Use After Free Vulnerability - CVE-2015-1650**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1650) | [**Microsoft Office Component Use After Free Vulnerability - CVE-2015-1651**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1651) | [**Microsoft Outlook App for Mac XSS Vulnerability – CVE-2015-1639**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1639) | **Aggregate Severity Rating** |
**Microsoft Office 2007** | ||||||
Microsoft Word 2007 Service Pack 3 | **Important** Remote Code Execution (2965284) | **Critical** Remote Code Execution (2965284) | **Important** Remote Code Execution (2965284) | **Critical** Remote Code Execution (2965284) | Not applicable | **Critical** |
**Microsoft Office 2010** | ||||||
Microsoft Office 2010 Service Pack 2 (32-bit editions) | **Important** Remote Code Execution (2965236) | **Critical** Remote Code Execution (2965236) | **Important** Remote Code Execution (2965236) | Not applicable | Not applicable | **Critical** |
Microsoft Office 2010 Service Pack 2 (64-bit editions) | **Important** Remote Code Execution (2965236) | **Critical** Remote Code Execution (2965236) | **Important** Remote Code Execution (2965236) | Not applicable | Not applicable | **Critical** |
Microsoft Word 2010 Service Pack 2 (32-bit editions) | **Important** Remote Code Execution (2553428) | **Critical** Remote Code Execution (2553428) | **Important** Remote Code Execution (2553428) | Not applicable | Not applicable | **Critical** |
Microsoft Word 2010 Service Pack 2 (64-bit editions) | **Important** Remote Code Execution (2553428) | **Critical** Remote Code Execution (2553428) | **Important** Remote Code Execution (2553428) | Not applicable | Not applicable | **Critical** |
**Microsoft Office 2013 and Microsoft Office 2013 RT** | ||||||
Microsoft Word 2013 Service Pack 1 (32-bit editions) | **Important** Remote Code Execution (2965224) | Not applicable | **Important** Remote Code Execution (2965224) | Not applicable | Not applicable | **Important** |
Microsoft Word 2013 Service Pack 1 (64-bit editions) | **Important** Remote Code Execution (2965224) | Not applicable | **Important** Remote Code Execution (2965224) | Not applicable | Not applicable | **Important** |
Microsoft Word 2013 RT Service Pack 1 | **Important** Remote Code Execution (2965224) | Not applicable | **Important** Remote Code Execution (2965224) | Not applicable | Not applicable | **Important** |
**Microsoft Office for Mac** | ||||||
Microsoft Outlook for Mac for Office 365 | Not applicable | Not applicable | Not applicable | Not applicable | Not applicable | **Important** Elevation of Privilege (3055707) |
Microsoft Office for Mac 2011 | Not applicable | Not applicable | Not applicable | Not applicable | **Important** Elevation of Privilege (3051737) | **Important** |
Microsoft Word for Mac 2011 | **Important** Remote Code Execution (3051737) | Not applicable | Not applicable | Not applicable | Not applicable | **Important** |
**Other Office Software** | ||||||
Microsoft Word Viewer | Not applicable | **Critical** Remote Code Execution (2965289) | **Important** Remote Code Execution (2965289) | **Critical** Remote Code Execution (2965289) | Not applicable | **Critical** |
Microsoft Office Compatibility Pack Service Pack 3 | **Important** Remote Code Execution (2965210) | **Critical** Remote Code Execution (2965210) | **Important** Remote Code Execution (2965210) | **Critical** Remote Code Execution (2965210) | Not applicable | **Critical** |
**Vulnerability Severity Rating and Maximum Security Impact by Affected Software** | ||||||
**Affected Software** | [**Microsoft Office Memory Corruption Vulnerability – CVE-2015-1641**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1641) | [**Microsoft Office Component Use After Free Vulnerability - CVE-2015-1649**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1649) | [**Microsoft Office Component Use After Free Vulnerability - CVE-2015-1650**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1650) | [**Microsoft Office Component Use After Free Vulnerability - CVE-2015-1651**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1651) | [**Microsoft Outlook App for Mac XSS Vulnerability – CVE-2015-1639**](http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1639) | **Aggregate Severity Rating** |
**Microsoft SharePoint Server 2010** | ||||||
Word Automation Services on Microsoft SharePoint Server 2010 Service Pack 2 | **Important** Remote Code Execution (2553164) | **Critical** Remote Code Execution (2553164) | **Important** Remote Code Execution (2553164) | Not applicable | Not applicable | **Critical** |
**Microsoft SharePoint Server 2013** | ||||||
Word Automation Services on Microsoft SharePoint Server 2013 Service Pack 1 | **Important** Remote Code Execution (2965215) | Not applicable | **Important** Remote Code Execution (2965215) | Not applicable | Not applicable | **Important** |
**Microsoft Office Web Apps 2010** | ||||||
Microsoft Office Web Apps Server 2010 Service Pack 2 | **Important** Remote Code Execution (2965238) | **Critical** Remote Code Execution (2965238) | **Important** Remote Code Execution (2965238) | Not applicable | Not applicable | **Critical** |
**Microsoft Office Web Apps 2013** | ||||||
Microsoft Office Web Apps Server 2013 Service Pack 1 | **Important** Remote Code Execution (2965306) | Not applicable | **Important** Remote Code Execution (2965306) | Not applicable | Not applicable | **Important** |
Vulnerability title | CVE number | Publicly Disclosed | Exploited |
Microsoft Office Component Use After Free Vulnerability | CVE-2015-1650 | No | No |
Vulnerability title | CVE number | Publicly Disclosed | Exploited |
Microsoft Office Component Use After Free Vulnerability | CVE-2015-1649 | No | No |
Microsoft Office Component Use After Free Vulnerability | CVE-2015-1651 | No | No |