MS15-047 - Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution

Bulletin ID: 

MS15-047

Severity: 

Important

Description: 

This security update resolves vulnerabilities in Microsoft Office server and productivity software. The vulnerabilities could allow remote code execution if an authenticated attacker sends specially crafted page content to a SharePoint server. An attacker who successfully exploited these vulnerabilities could run arbitrary code in the security context of the W3WP service account on the target SharePoint site.

Security advisory: 

Related content