Lucene search
MicrosoftCVELIST:CVE-2020-0697HistoryFeb 11, 2020 - 9:23 p.m.
CVE-2020-0697
2020-02-1121:23:02
microsoft
www.cve.org
An elevation of privilege vulnerability exists in Microsoft Office OLicenseHeartbeat task, where an attacker who successfully exploited this vulnerability could run this task as SYSTEM.To exploit the vulnerability, an authenticated attacker would need to place a specially crafted file in a specific location, thereby allowing arbitrary file corruption.The security update addresses the vulnerability by correcting how the process validates the log file., aka ‘Microsoft Office Tampering Vulnerability’.
CNA Affected
[
{
"product": "Office 365 ProPlus",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "32-bit Systems"
},
{
"status": "affected",
"version": "64-bit Systems"
}
]
}
]Related
nvd
nvd
CVE-2020-0697
2020-02-11 22:15:16
prion
prion
Privilege escalation
2020-02-11 22:15:00
mscve
mscve
Microsoft Office Elevation of Privilege Vulnerability
2020-02-11 08:00:00
cve
cve
CVE-2020-0697
2020-02-11 22:15:16
openvas
openvas
Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Feb 2020)
2020-02-12 00:00:00
nessus
nessus
Security Updates for Microsoft Office Products C2R (February 2020)
2022-06-10 00:00:00
Security Updates for Microsoft Office Products (February 2020) (deprecated)
2020-02-14 00:00:00
kaspersky
kaspersky
KLA11663 Multiple vulnerabilities in Microsoft Office
2020-02-11 00:00:00
talosblog
talosblog