Office XP: MS10-031: Vulnerability in Microsoft Visual Basic for Applications could allow remote code execution

SUPPORT SOLUTION:

Microsoft has released security bulletin MS10-031. To view the complete security bulletin, visit one of the following Microsoft Web sites:
Home users:http://www.microsoft.com/security/updates/bulletins/201005.aspx
(http://www.microsoft.com/security/updates/bulletins/201005.aspx)
: Download the updates for your home computer or laptop from the Microsoft Update Web site now:
http://update.microsoft.com/microsoftupdate
(http://update.microsoft.com/microsoftupdate)
IT professionals:http://www.microsoft.com/technet/security/bulletin/ms10-031.mspx
(http://www.microsoft.com/technet/security/bulletin/ms10-031.mspx)
.How to obtain help and support for this security update

For home users, no-charge support is available by calling 1-866-PCSAFETY in the United States and Canada or by contacting your local Microsoft subsidiary. For more information about how to contact your local Microsoft subsidiary for support issues with security updates, visit the Microsoft International Support Web site: http://support.microsoft.com/common/international.aspx?rdpath=4
(http://support.microsoft.com/common/international.aspx?rdpath=4)
North American customers can also obtain instant access to unlimited no-charge e-mail support or to unlimited individual chat support by visiting the following Microsoft Web site: http://support.microsoft.com/oas/default.aspx?&prid=7552
(http://support.microsoft.com/oas/default.aspx?&prid=7552)
For enterprise customers, support for security updates is available through your usual support contacts. .Known issues and additional information about this security update

For more information about this security update and for information about any known issues with specific releases of this software, click the following article numbers to view the articles in the Microsoft Knowledge Base:

976380 

(http://support.microsoft.com/kb/976380/
)

MS10-031: Description of the security update for Office XP: May 11, 2010

976382 

(http://support.microsoft.com/kb/976382/
)
MS10-031: Description of the security update for Office 2003: May 11, 2010

976321 

(http://support.microsoft.com/kb/976321/
)
MS10-031: Description of the security update for the 2007 Office system: May 11, 2010

974945 

(http://support.microsoft.com/kb/974945/
)
MS10-031: Description of the security update for Microsoft Visual Basic for Applications runtime: May 11, 2010

.Frequently asked Questions

Q: This security update applies only to Microsoft software. How can I determine whether third-party applications have deployed an affected version of the Visual Basic for Applications runtime (VBE6.DLL) on my system?

A: Third-party applications that support VBA could deploy VBE6.DLL in a location that is not updated by this security update. In the case that you do have a third-party application that installed its own copy of VBE6.DLL, to help ensure that your system has improved protection from the vulnerability described in this bulletin, you should contact the developer or vendor responsible for support for the third-party application directly.

To create a list of copies of the vbe6.dll file on the hard disk, at a command prompt, type the following commands and press ENTER after each command:
cd \
dir /a /s vbe6.dll >c:\vbe6list.txt.Security update replacement information
3,
This security update replaces the following security updates:921645 

(http://support.microsoft.com/kb/921645/
)
MS06-047: Vulnerability in Microsoft Visual Basic for Applications could allow remote code execution

947108 

(http://support.microsoft.com/kb/947108/
)
MS08-013: Vulnerability in Microsoft Office could allow remote code execution

.

For File Repair and Data Recovery, visit File Repair / Data Recovery