CVE-2017-11854

🗓️ 15 Nov 2017 03:00:00Reported by microsoftType

Microsoft Word memory corruption vulnerabilit

Reporter	Title	Published	Views	Family All 23
ATTACKERKB	CVE-2017-11854	15 Nov 201703:29	–	attackerkb
BDU FSTEC	Vulnerability of Microsoft Word text editor, the Microsoft Office Compability Pack, and other Microsoft Office programs, caused by an operation that goes beyond the buffer in memory, allowing attackers to execute arbitrary code.	18 Jan 201800:00	–	bdu_fstec
CNVD	Microsoft Office Remote Code Execution Vulnerability (CNVD-2017-37106)	16 Nov 201700:00	–	cnvd
Check Point Advisories	Microsoft Word Memory Corruption (CVE-2017-11854)	14 Nov 201700:00	–	checkpoint_advisories
CVE	CVE-2017-11854	15 Nov 201703:00	–	cve
Microsoft KB	Description of the security update for Microsoft Office Compatibility Pack Service Pack 3: November 14, 2017	14 Nov 201708:00	–	mskb
Microsoft KB	End of support for Office 2007	14 Nov 201708:00	–	mskb
Microsoft KB	Description of the security update for Office 2010: November 14, 2017	14 Nov 201708:00	–	mskb
Microsoft KB	Description of the security update for Word 2010: November 14, 2017	14 Nov 201708:00	–	mskb
Kaspersky	KLA11139 Multiple vulnerabilities in Microsoft Office	14 Nov 201700:00	–	kaspersky

[
  {
    "product": "Microsoft Office",
    "vendor": "Microsoft Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Microsoft Word 2007 Service Pack 3, Microsoft Word 2010 Service Pack 2, Microsoft Office 2010 Service Pack 2, and Microsoft Office Compatibility Pack Service Pack 3"
      }
    ]
  }
]

Source	Link
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11854
securitytracker	www.securitytracker.com/id/1039795
securityfocus	www.securityfocus.com/bid/101746

15 Nov 2017 10:57Current

8.2High risk

Vulners AI Score8.2

EPSS0.1888