Lucene search
HistoryMay 14, 2014 - 11:13 a.m.
CVE-2014-1808
microsoft office
cve-2014-1808
sp1
rt
token reuse vulnerability
security
remote attack
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
8 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.5%
Microsoft Office 2013 Gold, SP1, RT, and RT SP1 allows remote attackers to obtain sensitive token information via a web site that sends a crafted response during opening of an Office document, aka “Token Reuse Vulnerability.”
Affected configurations
Node
microsoftofficeMatch2013
ORmicrosoftofficeMatch2013sp1
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:office | microsoft office | eq | 2013 |
Related
prion
prion
Security feature bypass
2014-05-14 11:13:00
symantec
symantec
cvelist
cvelist
CVE-2014-1808
2014-05-14 10:00:00
nvd
nvd
CVE-2014-1808
2014-05-14 11:13:06
openvas
openvas
Microsoft Office Remote Code Execution Vulnerabilities (2961037)
2014-05-14 00:00:00
Microsoft Office Remote Code Execution Vulnerabilities (2961037)
2014-05-14 00:00:00
mskb
mskb
nessus
nessus
securityvulns
securityvulns
Microsoft Office multiple security vulnerabilities
2014-05-14 00:00:00
kaspersky
kaspersky
KLA10616 Multiple vulnerabilities in Microsoft Office
2014-12-09 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
8 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.5%
Related for CVE-2014-1808