Outlook & Excel fr X86 apps detected as unsafe but no MS update => ?



  • Hi,
    I have two "unsafe" versions of french x86 Excel & two Outlook ones detected and no safe one. I checked WU and store: No update.
    C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16010.9001.2171.0_x86__xxxx\Office16\EXCEL.EXE
    C:\Windows\InfusedApps\Packages\Microsoft.Office.Desktop.Excel_16000.8528.2136.0_x86__<xxxx>\Office16\EXCEL.EXE
    C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16010.9001.2171.0_x86__<xxx>\Office16\OUTLOOK.EXE
    C:\Windows\InfusedApps\Packages\Microsoft.Office.Desktop.Outlook_16000.8528.2136.0_x86__<xxx>\Office16\OUTLOOK.EXE
    *:<xxx> replaces a code that seems installation instance specific.
    Hope this helps.
    Greg.


  • Community Moderator

    @GregAlexandre and @Tom Is this issue solved?


  • VulnDetect Team Member

    @gregalexandre From what I can see, then all the ones you mention above should be updated for security reasons. So, if they are installed and associated with URL handlers and file extensions, then you should find a way to update it.

    You mention that there is no MS update, did you enable "Give me updates for other Microsoft products when I update Windows"? And did you check the "Office Account" -> Office Updates" from within Office? These days there seems to be two ways of updating Office, though I didn't use the one via Windows Update for a long time.

    In the end, I don't think it is advisable to have two MS Office installations on the same machine.



  • @tom Still many Outlook, Excel,... instances flagged as unsafe plus one safe.
    The "odd" location could be related to office365 related installations.
    I have a home version of Office 2016 that had some difficulties to coexist with office 365 apps. For instance, I had some difficulties to get rid of the free OneNote apps and have OneNote 2016 take over it. I am no more MS Office tech aware to help more.


  • VulnDetect Team Member

    @gregalexandre How does this look now?
    And are you sure that the files in these locations are the "active" ones?
    On the system I use to test inspection of Office, the files are located like this:
    C:\Program Files\Microsoft Office\user\Office16\EXCEL.EXE
    And this seems to be the most common place, in fact, I only see two other "odd" locations like the above.


  • VulnDetect Team Member

    @gregalexandre Thank you for reporting this. This was expected and it is work-in-progress to improve / fix MS Office detection. Currently, only the monthly release train for Office 2016 is at an acceptable state, all others are likely to be wrong. We will make a robust improvement soon.