Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

KLA11100 Multiple vulnerabilities in Microsoft Office

🗓️ 12 Sep 2017 00:00:00Reported by Kaspersky LabType 
kaspersky
 kaspersky🔗 threats.kaspersky.com👁 168 Views

Multiple vulnerabilities in Microsoft Office. Exploits lead to code execution, sensitive info leaks, and privilege escalatio

Related
Refs
ReporterTitlePublishedViews
Family
0day.today		Microsoft Windows Kernel - win32k.sys TTF Font Processing - Out-of-Bounds Reads/Writes with Malforme
18 Sep 201700:00
zdt
BDU FSTEC		The vulnerability affects the Uniscribe services on the Windows operating system, the Microsoft Office software suite, the web conference software Live Meeting, the instant messaging application Skype for Business, and the instant messaging software Microsoft Lync. This vulnerability arises due to an out-of-buffer operation in memory, allowing an attacker to execute arbitrary code.
11 Oct 201700:00
bdu_fstec
BDU FSTEC		The vulnerability of the Microsoft PowerPoint presentation preparation program, the Microsoft SharePoint Server corporate application package, and the Office Online Server web server is related to incorrect handling of objects in memory, allowing an attacker to execute arbitrary code.
17 Oct 201700:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft Publisher software lies in its improper handling of objects in memory, allowing a hacker to execute arbitrary code.
25 Oct 201700:00
bdu_fstec
BDU FSTEC		The vulnerability of the Windows operating system’s font library, allowing a hacker to execute arbitrary code
26 Oct 201700:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft Excel, Microsoft Excel for Mac, and the Microsoft Office Compatibility Pack relates to improper handling of objects in memory, allowing an attacker to gain privileges of the current user.
26 Oct 201700:00
bdu_fstec
BDU FSTEC		Vulnerability of Microsoft Office software, related to improper handling of objects in memory, allows a hacker to execute arbitrary code.
26 Oct 201700:00
bdu_fstec
BDU FSTEC		The vulnerability of the Microsoft Office software package arises from improper handling of objects in memory, allowing an attacker to execute arbitrary code.
26 Oct 201700:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft Excel for Mac spreadsheet editors, related to improper handling of objects in memory, allows a hacker to execute arbitrary code.
26 Oct 201700:00
bdu_fstec
Circl		CVE-2017-8682
18 Sep 201700:00
circl
Rows per page
SourceLink
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV170015
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8567
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8632
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8630
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8631
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8682
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8744
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8745
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8742
portalwww.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8695
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
22 Jan 2024 00:00Current
8.4High risk
Vulners AI Score8.4
CVSS 38.8
CVSS 29.3
CVSS 3.17.8
EPSS0.49765
microsoft officevulnerabilitiescode executionsensitive informationprivilege escalation
168