9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.468 Medium
EPSS
Percentile
97.4%
06/09/2015
Critical
Improper memory handling were found in Microsoft Office. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed file.
Microsoft Office 2007 compatibility Pack Service Pack 3
Microsoft Office 2010 x86, x64 Service Pack 2
Microsoft Office 2013 x86, x64 Service Pack 1
Microsoft Office 2013 RT Service Pack 1
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Microsoft Advisory
CVE-2015-1759
CVE-2015-1770
CVE-2015-1760
ACE
CVE-2015-17599.3Critical
CVE-2015-17709.3Critical
CVE-2015-17609.3Critical
2863817
3039782
2863812
3064949
3039749
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
support.microsoft.com/kb/2863812
support.microsoft.com/kb/2863817
support.microsoft.com/kb/3039749
support.microsoft.com/kb/3039782
support.microsoft.com/kb/3064949
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1759
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1760
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1770
portal.msrc.microsoft.com/en-us/security-guidance
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2015-1759
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2015-1760
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2015-1770
statistics.securelist.com/vulnerability-scan/month
technet.microsoft.com/en-us/library/security/ms15-059
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Office/