8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.911 High
EPSS
Percentile
98.8%
12/09/2014
Critical
Multiple serious vulnerabilities have been found in Microsoft Office products. Malicious users can exploit these vulnerabilities to run arbitrary code, cause denial of service, loss of integrity, security bypass, privilege escalation and obtain sensitive information.
Microsoft Office 2003,
Microsoft Office 2007,
Microsoft Office 2010,
Microsoft Office 2013,
Microsoft Office 2013 RT,
Microsoft Office for Mac,
Microsoft Word Viewer,
Microsoft Office Web Apps,
Microsoft SharePoint Server,
Microsoft Office Compatibility Pack,
Microsoft OneNote.
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2014-1818
CVE-2014-1817
CVE-2014-2778
CVE-2014-4077
CVE-2014-0260
CVE-2014-0259
CVE-2014-2815
CVE-2014-6333
CVE-2014-6361
CVE-2014-6360
CVE-2014-6364
CVE-2014-6357
CVE-2014-1761
CVE-2014-0258
CVE-2014-1808
CVE-2014-1756
CVE-2014-1757
CVE-2014-1758
CVE-2014-6334
CVE-2014-6335
CVE-2014-4117
CVE-2014-1809
ACE
CVE-2014-18189.3Critical
CVE-2014-18179.3Critical
CVE-2014-27789.3Critical
CVE-2014-40779.3Critical
CVE-2014-02609.3Critical
CVE-2014-02599.3Critical
CVE-2014-28159.3Critical
CVE-2014-63339.3Critical
CVE-2014-63619.3Critical
CVE-2014-63609.3Critical
CVE-2014-63649.3Critical
CVE-2014-63579.3Critical
CVE-2014-17619.3Critical
CVE-2014-02589.3Critical
CVE-2014-18084.3Warning
CVE-2014-17569.3Critical
CVE-2014-17579.3Critical
CVE-2014-17589.3Critical
CVE-2014-63349.3Critical
CVE-2014-63359.3Critical
CVE-2014-41179.3Critical
CVE-2014-18096.8High
2967487
2969261
2992719
3017301
3017349
3017347
3009710
3000434
2961033
2961037
2950145
2949660
2916605
2977201
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
support.microsoft.com/kb/2916605
support.microsoft.com/kb/2949660
support.microsoft.com/kb/2950145
support.microsoft.com/kb/2961033
support.microsoft.com/kb/2961037
support.microsoft.com/kb/2967487
support.microsoft.com/kb/2969261
support.microsoft.com/kb/2977201
support.microsoft.com/kb/2992719
support.microsoft.com/kb/3000434
support.microsoft.com/kb/3009710
support.microsoft.com/kb/3017301
support.microsoft.com/kb/3017347
support.microsoft.com/kb/3017349
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0258
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0259
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0260
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1756
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1757
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1758
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1761
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1808
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1809
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1817
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1818
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2778
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2815
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4077
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4117
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6333
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6334
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6335
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6357
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6360
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6361
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6364
portal.msrc.microsoft.com/en-us/security-guidance
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-0258
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-0259
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-0260
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-1756
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-1757
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-1758
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-1761
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-1808
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-1809
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-1817
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-1818
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-2778
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-2815
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-4077
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-4117
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-6333
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-6334
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-6335
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-6357
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-6360
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-6361
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2014-6364
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Office/
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.911 High
EPSS
Percentile
98.8%