Microsoft Security Advisory 3010060

Vulnerability in Microsoft OLE Could Allow Remote Code Execution

Published: October 21, 2014 | Updated: November 11, 2014

Version: 2.0

General Information

Executive Summary

Microsoft has completed the investigation into a public report of a vulnerability. We have issued Microsoft Security Bulletin MS14-064 to address this issue. For more information about this issue, including download links for an available security update, please review the security bulletin. The vulnerability addressed is the Windows OLE Remote Code Execution Vulnerability - CVE-2014-6352


Microsoft recognizes the efforts of those in the security community who help us protect customers through responsible vulnerability disclosure. See Acknowledgments for more information.


  • V1.0 (October 21, 2014): Advisory published.
  • V1.1 (October 30, 2014): Advisory updated to include additional acknowledgments.
  • V2.0 (November 11, 2014): Advisory updated to reflect publication of security bulletin.

Page generated 2014-11-11 13:10Z-08:00.